17+ hour, 11+ min ago  (396+ words) A newly issued emergency directive from the US Cybersecurity and Infrastructure Security Agency (CISA) has warned that attackers are actively exploiting vulnerabilities in Cisco Catalyst SD-WAN infrastructure used across US federal networks. The warning centers on a flaw tracked as…...

14+ hour, 28+ min ago  (535+ words) Researchers at Pillar Security have found two new critical vulnerabilities in self-hosted and cloud n8n deployments. N8n is a popular open-source workflow automation platform powering hundreds of thousands of enterprise AI systems worldwide. One of the flaws, tracked as CVE-2026-27493, can lead…...

1+ day, 19+ hour ago  (559+ words) UK organizations were hit by far fewer cyber-attacks in February than the global average, but the year-on-year (YoY) increase was nearly four times the growth rate worldwide, according to Check Point. The security vendor's February 2026 Global Threat Intelligence'report revealed that…...

1+ day, 12+ hour ago  (520+ words) Security and safety guardrails in generative AI tools, deployed to prevent malicious uses like prompt injection attacks, can themselves be hacked through a type of prompt injection. Researchers at Unit 42, Palo Alto Networks" research lab, have found that large language…...

1+ day, 19+ hour ago  (627+ words) This shift reflects not only the nature of the signals, but also the shift in how identity is verified. As more identity decisions move online and into automated workflows, signals that were once assessed by human examiners in person are…...

1+ day, 20+ hour ago  (339+ words) In a welcome relief for sysadmins, Microsoft released security updates for just 79 vulnerabilities in this month's Patch Tuesday yesterday, including two publicly disclosed zero-days. Microsoft categorizes zero-day vulnerabilities as flaws which have either been exploited or disclosed without a patch…...

2+ day, 10+ hour ago  (335+ words) A data breach affecting 15,661 Ericsson Inc. employees and customers'has been disclosed after attackers compromised a third-party service provider used by the company. The incident involved unauthorised access to files containing personal information, according to breach notifications filed with US state…...

2+ day, 9+ hour ago  (462+ words) Just 24% of organizations test their identity disaster recovery plans every six months, according to new research which examined'how businesses prepare for identity-focused cyber-attacks. The findings suggested that despite rising investment in identity threat detection and response (ITDR), many organizations remain…...

2+ day, 14+ hour ago  (441+ words) Google Cloud has warned that threat actors targeting cloud environments now favor campaigns which gain initial access by exploiting software vulnerabilities over credential-based attacks." Published on 9 March, the Google Cloud Office of the CISO's H1 2026 Google Cloud Threat Horizons Report, details…...

2+ day, 19+ hour ago  (333+ words) Salesforce has urged Experience Cloud customers to audit their website configurations after reports that a notorious threat group has already stolen data from hundreds of companies. The SaaS giant said that it had been tracking an increase in threat actor…...