Deprecated: The each() function is deprecated. This message will be suppressed on further calls in /home/zhenxiangba/zhenxiangba.com/public_html/phproxy-improved-master/index.php on line 456
171 Security Blogs
[go: Go Back, main page]

171 Security Blogs

Last Updated: 11 Mar 26 09:41 UTC

Blog List | Github | OPML

2026-03-11

DarkRelay
Performing DLL Hijacking

Dark Reading
Middle East Conflict Highlights Cloud Resilience Gaps

Praetorian
When Proxies Become the Attack Vectors in Web Architectures

ISC SANS
ISC Stormcast For Wednesday, March 11th, 2026 https://isc.sans.edu/podcastdetail/9844, (Wed, Mar 11th)

Dark Reading
Microsoft Patches 83 CVEs in March Update

Krebs on Security
Microsoft Patch Tuesday, March 2026 Edition


2026-03-10

Talos Intelligence
Microsoft Patch Tuesday for March 2026 — Snort rules and prominent vulnerabilities

Offensive Security
The AI Security Skills Gap: What It Is, Where It Exists, and How to Close It

Dark Reading
'Overly Permissive' Salesforce Cloud Configs in the Crosshairs

Rapid7
Patch Tuesday - March 2026

Amazon Security
AWS European Sovereign Cloud achieves first compliance milestone: SOC 2 and C5 reports plus seven ISO certifications

Black Lantern Security
red-run

Dark Reading
Russian Threat Actor Sednit Resurfaces With Sophisticated Toolkit

Amazon Security
Security is a team sport: AWS at RSAC 2026 Conference

Zero Day Initiative
The March 2026 Security Update Review

Malwarebytes
How to see your Google Search history (and delete it)

ISC SANS
Microsoft Patch Tuesday March 2026, (Tue, Mar 10th)

Rapid7
Purple Teaming in 2026: From Assumed Protection to Measurable Resilience

Varonis
What You Need To Know About Salesforce AuraInspector Attacks

Amazon Security
AWS Security Hub is expanding to unify security operations across multicloud environments

Auth0
Strengthening Bot Detection with JA4 Signals

PT SWARM
Attack arithmetic: how an integer overflow in PostgreSQL libpq leads to denial of service

PT Swarm
Attack arithmetic: how an integer overflow in PostgreSQL libpq leads to denial of service

Dark Reading
'BlackSanta' EDR Killer Targets HR Workflows

Mend
Introducing System Prompt Hardening: production-ready protection for system prompts

SentinelOne
FortiGate Edge Intrusions | Stolen Service Accounts Lead to Rogue Workstations and Deep AD Compromise

Varonis
Your AI Assistant Is an Attacker's Favorite Recon Tool

Rapid7
When Trusted Websites Turn Malicious: WordPress Compromises Advance Global Stealer Operation

Cloudflare
Investigating multi-vector attacks in Log Explorer

Cloudflare
Building a security overview dashboard for actionable insights

Malwarebytes
Signal and WhatsApp accounts targeted in phishing campaign

Malwarebytes
Hackers may have breached FBI wiretap network via supply chain

Schneier on Security
Jailbreaking the F-35 Fighter Jet

Cloudflare
Translating risk insights into actionable protection: leveling up security posture with Cloudflare and Mastercard

TrustedSec
Building a Detection Foundation: Part 3 - PowerShell and Script Logging

ISC SANS
ISC Stormcast For Tuesday, March 10th, 2026 https://isc.sans.edu/podcastdetail/9842, (Tue, Mar 10th)

Troy Hunt
Weekly Update 494

Datadog HQ
Securing Datadog's platform in the AI age: The role of observability data

Fastly
Building an AI Gateway on Fastly Compute


2026-03-09

Escape DAST
Escape raises $18M Series A to replace legacy scanners with AI agent-driven discovery, pentesting, and remediation

Dark Reading
White House Cyber Strategy Prioritizes Offense

Dark Reading
'InstallFix' Attacks Spread Fake Claude Code Sites

Dark Reading
Are We Ready for Auto Remediation With Agentic AI?

Praetorian
Beyond Prompt Injection: The Hidden AI Security Threats in Machine Learning Platforms

Searchlight Cyber
How to Choose the Right ASM Solution

Rapid7
Accelerate Attack Surface Discovery with new AI-Powered Connectors

Meta Security
How Advanced Browsing Protection Works in Messenger

ISC SANS
Encrypted Client Hello: Ready for Prime Time?, (Mon, Mar 9th)

Cloudflare
Active defense: introducing a stateful vulnerability scanner for APIs

Cloudflare
Fixing request smuggling vulnerabilities in Pingora OSS deployments

Malwarebytes
Fake Claude Code install pages hit Windows and Mac users with infostealers

Bishop Fox Security
Pre-Authentication SQL Injection in FortiClient EMS 7.4.4 - CVE-2026-21643

Microsoft Security
Secure agentic AI for your Frontier Transformation

Malwarebytes
Quiz sites trick users into enabling unwanted browser notifications

Dark Reading
Chinese Cyber Threat Lurks In Critical Asian Sectors for Years

Schneier on Security
New Attack Against Wi-Fi

Searchlight Cyber
How Do You Build An Attack Surface Management Program?

Malwarebytes
A week in security (March 2 – March 8)

Cloudflare
Complexity is a choice. SASE migrations shouldn’t take years.

DarkRelay
APT42: Operations, IOCs, Tactics, Detection Strategies

ISC SANS
ISC Stormcast For Monday, March 9th, 2026 https://isc.sans.edu/podcastdetail/9840, (Mon, Mar 9th)

Datadog HQ
Approaching your observability migration with the right mindset

Datadog HQ
Four ways engineering teams use the Datadog MCP Server to power AI agents

Rosecurify
Seclog - #168


2026-03-08

Krebs on Security
How AI Assistants are Moving the Security Goalposts

Malwarebytes
Ring doorbells: Won’t you see my neighbor? (Lock and Code S07E05)


2026-03-07

DarkRelay
APT29 (Midnight Blizzard): Operations, IOCs, Tactics, Detection Strategies

Okta Security
Datadog and Okta Combine for New Customer Detections

Ars Technica Security
From Iran to Ukraine, everyone's trying to hack security cameras

ISC SANS
YARA-X 1.14.0 Release, (Sat, Mar 7th)

Joshua Rogers
Making Firefox’s right-click not suck, even more, with userChrome.css


2026-03-06

Schneier on Security
Friday Squid Blogging: Squid in Byzantine Monk Cooking

Github Security Blog
How to scan for vulnerabilities with GitHub Security Lab’s open source AI-powered framework

Palo Alto Networks
How the National Cyber Strategy Secures Our Digital Way of Life

Ars Technica Security
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances

Malwarebytes
One click on this fake Google Meet update can give attackers control of your PC

Dark Reading
Cylake Offers AI-Native Security Without Relying on Cloud Services

Praetorian
Building Bridges, Breaking Pipelines: Introducing Trajan

Rapid7
Metasploit Wrap-Up 03/06/2026

Dark Reading
North Korean APTs Use AI to Enhance IT Worker Scams

Binarly
Agentic Vulnerability Research with VulHunt

Schneier on Security
Anthropic and the Pentagon

Microsoft Security
AI as tradecraft: How threat actors operationalize AI

Dark Reading
EU Auto Rules Shift Gears on Cybersecurity Standards

Dark Reading
Iran's Cyber-Kinetic War Doctrine Takes Shape

SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 10

Cloudflare
From the endpoint to the prompt: a unified data security vision in Cloudflare One

Dark Reading
Cyberattack on Mexico's Gov't Agencies Highlight AI Threat

Schneier on Security
Claude Used to Hack Mexican Government

Malwarebytes
Beware of fake OpenClaw installers, even if Bing points you to GitHub

Malwarebytes
Fake CleanMyMac site installs SHub Stealer and backdoors crypto wallets

ISC SANS
ISC Stormcast For Friday, March 6th, 2026 https://isc.sans.edu/podcastdetail/9838, (Fri, Mar 6th)

Elastic Security Labs
Patch diff to SYSTEM

Auth0
Auth0 Fine-Grained Authorization (FGA) for Enterprise Trust


2026-03-05

Dark Reading
Nation-State Actor Embraces AI Malware Assembly Line

Dark Reading
Tycoon 2FA Goes Boom as Europol, Vendors Bust Phishing Platform

Dark Reading
Cisco Drops 48 New Firewall Vulnerabilities, 2 Critical

Talos Intelligence
Patch, track, repeat: The 2025 CVE retrospective

The Citizen Lab
Intellexa Founder, Three Others Sentenced to 8 Years in Prison Over Greek Spyware Scandal

Amazon Security
AWS completes the 2026 annual Dubai Electronic Security Centre (DESC) certification audit

Schneier on Security
Israel Hacked Traffic Cameras in Iran

Eclypsium
BTS #69 - Navigating Network Edge Vulnerabilities

Microsoft Security
Women’s History Month: Encouraging women in cybersecurity at every career stage

Dark Reading
Fig Security Emerges From Stealth to Fix Broken Security Operations

Dark Reading
Software Development Practices Help Enterprises Tackle Real-Life Risks

Google Safety & Security
The latest AI news we announced in February

Microsoft Security
Malicious AI Assistant Extensions Harvest LLM Chat Histories

Rapid7
From Code to Runtime: The Critical Role of DAST in Application Security

Dark Reading
LatAm Now Faces 2x More Cyberattacks Than US

Cloudflare
Ending the "silent drop": how Dynamic Path MTU Discovery makes the Cloudflare One Client more resilient

ISC SANS
ISC Stormcast For Thursday, March 5th, 2026 https://isc.sans.edu/podcastdetail/9836, (Thu, Mar 5th)

Schneier on Security
Hacked App Part of US/Israeli Propaganda Campaign Against Iran

Malwarebytes
Windows File Shredder: When deleting a file isn’t enough

Talos Intelligence
UAT-9244 targets South American telecommunication providers with three new malware implants

Malwarebytes
Supreme Court to decide whether geofence warrants are constitutional

Cloudflare
A QUICker SASE client: re-building Proxy Mode

Cloudflare
How Automatic Return Routing solves IP overlap

TrustedSec
Building a Detection Foundation: Part 2 - Windows Security Events

ISC SANS
Differentiating Between a Targeted Intrusion and an Automated Opportunistic Scanning [Guest Diary], (Wed, Mar 4th)

Amazon Security
2025 ISO and CSA STAR certificates are now available with one additional service and one new region

Elastic Security Labs
Hooked on Linux: Rootkit Taxonomy, Hooking Techniques and Tradecraft

Datadog HQ
Meet the new Bits AI SRE: Deeper reasoning, twice as fast

Fastly
Europe Under Pressure

Auth0
A Guide to Auth0 Session and Refresh Token Metadata


2026-03-04

Doyensec
The MCP AuthN/Z Nightmare

The Citizen Lab
From Harm to Justice: Ending Violence Against Women in the Public Sphere in the OSCE Region

Dark Reading
VMware Aria Operations Bug Exploited, Cloud Resources at Risk

Amazon Security
Enhanced access denied error messages with policy ARNs

Dark Reading
Stranger Things Meets Cybersecurity: Lessons from the Hive Mind

Microsoft Security
Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Dark Reading
Dark Reading Confidential: This Threat Hunter Helped Cops Bust Up An African Cybercrime Syndicate

Cloudflare
Always-on detections: eliminating the WAF “log versus block” trade-off

Searchlight Cyber
How to Stop Ransomware Attacks Before They Happen

Black Hills Info Sec
The “P” in PAM is for Persistence: Linux Persistence Technique

Cloudflare
Mind the gap: new tools for continuous enforcement from boot to login

Malwarebytes
Does the UK really want to ban VPNs? And can it be done?

Rapid7
Rapid7 and Our Global Partners Are Elevating Security Together

Malwarebytes
Attackers abuse OAuth’s built-in redirects to launch phishing and malware attacks

Searchlight Cyber
March 4th – This Week’s Top Cybersecurity and Dark Web Stories

Malwarebytes
High-severity Qualcomm bug hits Android devices in targeted attacks

Schneier on Security
Manipulating AI Summarization Features

Dark Reading
China's Silver Dragon Razes Governments in EU, SE Asia

ISC SANS
Want More XWorm?, (Wed, Mar 4th)