← Latest brief

Security news.

·Morning Brief

Today's cybersecurity landscape highlights a surge in sophisticated phishing and info-stealing campaigns, with threat actors leveraging novel techniques like abusing AI app builders and Solana dead drops. Critical vulnerabilities in NetScaler and a new CISA KEV addition underscore the ongoing need for diligent patching and robust security measures. Law enforcement also made significant strides against cybercrime, including the arrest of a major stolen credential marketplace administrator.

BLEEPINGBREACH
Mar 25READ

Bubble AI app builder abused to steal Microsoft account credentials

Threat actors are using the no-code app-building platform Bubble to host malicious web apps, bypassing phishing detection to steal Microsoft account credentials.

BLEEPINGPATCH
Mar 25READ

Citrix urges admins to patch NetScaler flaws as soon as possible

Citrix has released patches for two NetScaler ADC and NetScaler Gateway vulnerabilities, one of which is similar to previously exploited zero-day flaws.

CISAKEV
Mar 25READ

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added CVE-2026-33017, a Langflow Code Injection Vulnerability, to its KEV Catalog due to evidence of active exploitation.

THNPHISHING
Mar 25READ

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

An active device code phishing campaign is targeting Microsoft 365 identities in over 340 organizations across the U.S., Canada, Australia, New Zealand, and Germany by leveraging OAuth abuse.

BLEEPINGMALWARE
Mar 25READ

New Torg Grabber infostealer malware targets 728 crypto wallets

A new info-stealing malware, Torg Grabber, is designed to steal sensitive data from 850 browser extensions, including over 700 cryptocurrency wallets.

THNBREACH
Mar 25READ

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

The GlassWorm campaign has evolved to use Solana dead drops to deliver a multi-stage framework for comprehensive data theft and remote access trojan deployment.

THNBREACH
Mar 25READ

LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace

Russian law enforcement has arrested the alleged administrator of the LeakBase cybercrime forum, which facilitated the trade of stolen credentials.

SECURITYWEEKPATCH
Mar 25READ

iOS, macOS 26.4 Roll Out With Fresh Security Patches

Apple has released security updates for iOS, macOS, and older devices, addressing various vulnerabilities.

Generated twice daily from public security RSS feeds. Informational only.