12 News Items
THN · BleepingComputer · Krebs · Dark Reading · SANS
THN · BleepingComputer · Krebs · Dark Reading · SANS
📰 Cybersecurity News Headlines
Top stories from leading cybersecurity publications as of March 18, 2026.
-
More Attackers Are Logging In, Not Breaking In
— Dark Reading
Credential theft soared in the second half of 2025, thanks in part to the industrialization of infostealer malware and AI-enabled social eng… -
GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX
— Bleeping Computer
The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extens… -
Less Lucrative Ransomware Market Makes Attackers Alter Methods
— Dark Reading
Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data theft surges. -
Hackers Target Cybersecurity Firm Outpost24 in 7-Stage Phish
— Dark Reading
In an unsuccessful phishing attack, threat actors leveraged trusted brands and domains to try to redirect a C-suite executive at Outpost24 t… -
Europe sanctions Chinese and Iranian firms for cyberattacks
— Bleeping Computer
The European Union Council has announced sanctions against three entities and two individuals for their involvement in cyberattacks targetin… -
AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE
— The Hacker News
Cybersecurity researchers have disclosed details of a new method for exfiltrating sensitive data from artificial intelligence (AI) code exec… -
Warlock Ransomware Group Augments Post-Exploitation Activities
— Dark Reading
In a recent attack, the group showcased stealthier cross-network activity, thanks to its use of a new BYOVD technique and other tools. -
LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader
— The Hacker News
The ransomware operation known as LeakNet has adopted the ClickFix social engineering tactic delivered through compromised websites as an in… -
Top 5 Things CISOs Need to Do Today to Secure AI Agents
— Bleeping Computer
AI agents are autonomous actors with real access to data and systems, not just copilots. Token Security explains why identity-based access c… -
New font-rendering trick hides malicious commands from AI tools
— Bleeping Computer
A new font-rendering attack causes AI assistants to miss malicious commands shown on webpages by hiding them in seemingly harmless HTML. [..… -
IPv4 Mapped IPv6 Addresses, (Tue, Mar 17th)
— SANS ISC
Yesterday, in my diary about the scans for "/proxy/" URLs, I noted how attackers are using IPv4-mapped IPv6 addresses to possibly obfuscate … -
AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study Finds
— The Hacker News
A majority of security leaders are struggling to defend AI systems with tools and skills that are not fit for the challenge, according to th…
Generated by HiveNet.ai Threat Intelligence Platform · March 18, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC