F5 reclassifies CVE-2025-53521 from DoS to critical RCE (CVSS 9.8) in March 2026. In-memory-only webshells deployed, attackers linked to China.
Iranian group Handala breached FBI Director Kash Patel's personal Gmail. 300+ emails published in retaliation for domain seizures and $10M bounty.
TeamPCP compromised LiteLLM on PyPI on March 24, 2026 via a cascading supply chain attack. 95 million monthly downloads, credentials stolen.
NIST publishes its first DNS security guidance update since 2013. DNS shifts from operational service to active security control.
Anime streaming platform Crunchyroll (Sony) was breached on March 12, 2026. 100 GB of data exfiltrated via a compromised TELUS employee.
A flaw in Microsoft Excel allows Copilot Agent to exfiltrate data without user interaction. Zero-click, critical, patch available since March 10.
ShinyHunters compromised Infinite Campus via a Salesforce account on March 18, 2026. The system manages data for 11 million students across 3,200 US school districts.
The Ni8mare vulnerability in n8n allows unauthenticated full server takeover. CVSS 10.0, 100,000 estimated vulnerable instances, 26,512 detected by Censys.
Pro-Ukrainian hacktivist group Bearlyfy has conducted over 70 cyberattacks against Russian companies since January 2025, deploying custom ransomware GenieLocker.
UNC6201 (China) exploited CVE-2026-22769 (CVSS 10.0) in Dell RecoverPoint since mid-2024 without detection. Three malware strains deployed, root persistence achieved.
A vulnerability in Anthropic's Claude Chrome extension allowed silent prompt injection. Practical guide to auditing and securing your browser extensions.
Critical flaw in GNU InetUtils telnet daemon allows unauthenticated remote root code execution. 3,362 hosts directly exposed on the Internet.