Live Feeds
-
Meta disables 150,000 accounts linked to Southeast Asia scam centers
Meta says it disabled more than 150,000 Facebook and Instagram accounts tied to scam center networks in Southeast Asia during a joint international disruption effort that also led to arrests in Thailand.
-
CISA adds five actively exploited vulnerabilities to KEV catalog
CISA has added five vulnerabilities affecting Advantive VeraCore, Ivanti EPM, Microsoft .NET Framework, and D-Link DIR-859 routers to its Known Exploited Vulnerabilities catalog, ordering federal agencies to remediate them by set deadlines.
-
INTERPOL operation takes down 45,000 malicious IPs and leads to 94 arrests
INTERPOL says Operation Synergia III dismantled more than 45,000 malicious IP addresses and servers used in phishing, malware, and ransomware activity, resulting in 94 arrests across 72 countries and territories.
-
Apple updates older iPhones and iPads for WebKit flaw exploited in Coruna spyware attacks
Apple has released security updates for older iPhone and iPad models to fix a WebKit vulnerability that was exploited in the wild and linked to Coruna spyware attacks.
-
Veeam patches critical Backup & Replication flaws that allow remote code execution
Veeam has released security updates for Backup & Replication to fix multiple vulnerabilities, including critical flaws that could let authenticated domain users execute code remotely on affected servers.
-
Qualys details nine CrackArmor flaws in AppArmor that enable root escalation
Qualys says nine vulnerabilities in Linux AppArmor, collectively named CrackArmor, let unprivileged local users bypass protections, escalate to root, and break container isolation on affected systems.
-
CISA flags actively exploited n8n RCE flaw as KEV entry
CISA has added CVE-2025-68613, a critical remote code execution flaw in n8n, to its Known Exploited Vulnerabilities catalog after evidence of active exploitation, with fixes available in patched releases published by n8n.
-
Google fixes two Chrome zero-days exploited in the wild affecting Skia and V8
Google has released Chrome security updates to fix two high-severity zero-days, CVE-2026-3909 and CVE-2026-3910, that were exploited in the wild and later added to CISA’s Known Exploited Vulnerabilities catalog.
-
Threat actors mass-scan Salesforce Experience Cloud using modified AuraInspector tool
Salesforce says threat actors are increasingly targeting publicly accessible Experience Cloud sites with a customized AuraInspector tool to exploit overly permissive guest-user configurations and gain access to sensitive information.
-
Malicious npm package posing as OpenClaw installer deploys RAT, steals macOS credentials
Researchers say a malicious npm package named @openclaw-ai/openclawai masqueraded as an OpenClaw installer, deployed a remote access trojan, and stole sensitive data from macOS systems after being uploaded by a user named openclaw-ai on March 3, 2026.