Aggregator

New XWorm 7.1 and Remcos RAT Attacks Abuse Windows Tools to Evade Detection

15 hours 27 minutes ago

New XWorm 7.1 and Remcos RAT campaigns abuse trusted Windows tools to evade detection. The attacks exploit a WinRAR flaw and use process hollowing to spy on victims.

Deeba Ahmed

CVE-2025-15587 | Tinycontrol Lan Kontroler direct request

VulDB Recent Entries

15 hours 28 minutes ago

A vulnerability categorized as problematic has been discovered in Tinycontrol Lan Kontroler. The impacted element is an unknown function. Executing a manipulation can lead to direct request. This vulnerability is handled as CVE-2025-15587. The attack can only be done within the local network. There is not any exploit available. It is advisable to upgrade the affected component.

vuldb.com

【安全圈】星巴克数据泄露事件波及员工

安全圈

15 hours 29 minutes ago

一年一度的两会，是观察国家政策走向的重要窗口。2026年政府工作报告已经新鲜出炉，其中关于网络安全的表述，字字千钧。今天，我们就来深度拆解这份报告背后的安全信号。本次报告明确提出：“健全数据要素基础制度，强化数据安全与个人信息保护，完...

【安全圈】FBI 寻找被用于传播恶意软件的 Steam 游戏受害者

安全圈

15 hours 29 minutes ago

【安全圈】央视曝光“AI伪造人脸”大案：5万多条动态人脸视频被批量合成，冒充本人注册账号

安全圈

15 hours 29 minutes ago

Дипфейк вашего CEO уже в сети. Добро пожаловать на форум по ИИ-безопасности

Securitylab.ru

15 hours 31 minutes ago

16 марта в Кибердоме обсудят безопасность ИИ и защиту от дипфейков.

Attackers Abuse Microsoft Teams and Quick Assist to Drop Stealthy A0Backdoor

Cyber Security News

15 hours 32 minutes ago

A newly identified backdoor called A0Backdoor has emerged as part of a calculated social-engineering campaign that abuses Microsoft Teams and the Windows remote assistance tool Quick Assist. The threat group is tracked under aliases including Blitz Brigantine, Storm-1811, and STAC5777, and holds ties to the Black Basta ransomware network. Active since at least August 2025 […]

The post Attackers Abuse Microsoft Teams and Quick Assist to Drop Stealthy A0Backdoor appeared first on Cyber Security News.

Tushar Subhra Dutta

ANY.RUN at RootedCON 2026: Meeting Security Teams and Showcasing New Capabilities

Anyrun

15 hours 42 minutes ago

From March 5 to March 7, the ANY.RUN team attended RootedCON 2026 in Madrid and showcase some of our latest capabilities developed for modern SOC environments at the conference expo. The event provided a great opportunity to meet our existing clients and connect with security teams exploring advanced threat detection solutions. Meeting the Community and Partners RootedCON is one of the largest cybersecurity conferences in Europe, bringing together thousands of security researchers, SOC […]

The post ANY.RUN at RootedCON 2026: Meeting Security Teams and Showcasing New Capabilities appeared first on ANY.RUN's Cybersecurity Blog.

ANY.RUN

OpenClaw AI Agents Leaking Sensitive Data in Indirect Prompt Injection Attacks

Cyber Security News

15 hours 43 minutes ago

Attackers can exploit insecure defaults and prompt injection vulnerabilities to turn normal agent behavior into a silent data-exfiltration pipeline. The core issue is not just confusing the AI model; it is manipulating the agent to steal sensitive information without requiring any user interaction. The most alarming demonstration comes from security firm PromptArmor. They revealed how […]

The post OpenClaw AI Agents Leaking Sensitive Data in Indirect Prompt Injection Attacks appeared first on Cyber Security News.

Abinaya

Microsoft Edge 146 adds IP privacy and local network access controls

Help Net Security

15 hours 43 minutes ago

Microsoft Edge version 146 (Stable) became available on March 13, 2026, bringing updates to tracking protection, IP privacy, and enterprise network security policies. One change affects tracking prevention in InPrivate browsing. InPrivate windows use the same tracking prevention level configured for standard browsing sessions. The separate option that previously allowed a different tracking setting for private windows has been removed. The release expands Private IP, part of the Edge Secure Network capability. The feature routes … More →

The post Microsoft Edge 146 adds IP privacy and local network access controls appeared first on Help Net Security.

Anamarija Pogorelec

活动回顾 | SlowMist KYT 新品亮相，重构合规基座

慢雾科技

15 hours 45 minutes ago

本次发布会不仅展示了慢雾的最新技术成果，更为行业合规发展注入了新的动力。

Advanced Protection Mode in Android 17 prevents apps from misusing Accessibility Services

Security Affairs

15 hours 56 minutes ago

Android 17 will block non-accessibility apps from using the Accessibility API under Advanced Protection Mode to reduce malware abuse. Android 17 introduces a new security feature in Advanced Protection Mode (AAPM) that blocks apps without accessibility functions from accessing the Accessibility API. The change, first reported by Android Authority and included in Android 17 Beta […]

Pierluigi Paganini