Hello cyber pros! It's been a week of critical reminders about cloud security, diligent patching, and the evolving nature of warfare. Let's dive into the latest:

Salesforce Cloud Misconfigurations Under Attack ⚠️
- Threat actors are actively exploiting "overly permissive" guest user configurations in Salesforce Experience Cloud to steal sensitive data.
- This isn't a Salesforce platform vulnerability, but rather a customer misconfiguration. Attackers are using modified Aura Inspector tools to scan and extract data from public-facing sites.
- Actionable advice: audit guest user profiles, set company-wide defaults to "private", disable public APIs, restrict visibility, disable self-registration if not needed, and regularly review event monitoring logs.

👁️ Dark Reading | https://www.darkreading.com/application-security/overly-permissive-salesforce-cloud-configs-crosshairs

Microsoft's March Patch Tuesday 🛡️
- Microsoft released patches for 83 CVEs this month, with six identified as "more likely to exploit" and eight critical severity.
- A notable critical RCE (CVE-2027-21536, CVSS 9.8) in the Microsoft Devices Pricing Program was already patched and mitigated, uniquely identified by an AI agent.
- Two publicly known (zero-day) flaws, CVE-2026-26127 (.NET DoS) and CVE-2026-21262 (SQL Server EoP), are considered low threat despite public disclosure.
- Key EoP vulnerabilities include three in the Windows kernel (CVE-2026-24289, CVE-2026-26132, CVE-2026-24287) and others in SMB Server (CVE-2026-24294) and Microsoft Graphics Component (CVE-2026-23668), all with higher exploit likelihood.
- Two RCEs in Microsoft Office (CVE-2026-26113, CVE-2026-26110, CVSS 8.4) can be exploited via the Preview Pane without opening malicious files. Mitigate by disabling Preview Pane and restricting untrusted Office files.

👁️ Dark Reading | https://www.darkreading.com/application-security/microsoft-patches-83-cves-march-update

Cloud Resilience in Modern Warfare ☁️
- Recent Middle East conflicts saw physical attacks, including drone strikes, on AWS facilities in the UAE and Bahrain, causing significant structural damage and service disruptions.
- This highlights a critical shift: hyper-scale cloud data centres are now "Tier 1 strategic targets" in modern warfare, as militaries and governments increasingly rely on cloud infrastructure.
- Traditional cloud resilience strategies, designed for natural disasters, are insufficient against kinetic attacks that can permanently destroy hardware or sever physical connectivity.
- Organisations must rethink disaster recovery and data governance, especially for real-time, low-latency workloads. The concept of "Allied Data Sovereignty" may emerge, advocating for data backups in allied nations to ensure survival during crises.

👁️ Dark Reading | https://www.darkreading.com/cyber-risk/middle-east-conflict-highlights-cloud-resilience-gaps

#CyberSecurity #ThreatIntelligence #CloudSecurity #Salesforce #Misconfiguration #PatchTuesday #Microsoft #Vulnerabilities #RCE #EoP #CyberWarfare #CloudResilience #InfoSec

Claude Opus 4.6 AI found 22 Firefox vulnerabilities (14 high-severity) in two weeks, helping patch Firefox 148 — nearly 20% of 2025's high-risk bugs. 🧩

Anthropic notes AI excels at bug hunting but struggles with full exploits, marking a shift where AI-assisted analysis joins fuzzing as a key security tool. 🛡️

🔗 https://thehackernews.com/2026/03/anthropic-finds-22-firefox.html

#TechNews #Privacy #Firefox #AI #Security #Anthropic #Claude #Cybersecurity #Vulnerabilities #Mozilla #Browser #OpenSource #Hacking #DevSecOps #FOSS #Opus

Three #vulnerabilities in #Avira Internet #Security, from an arbitrary file delete primitive to two distinct paths to SYSTEM #privileges.

https://blog.quarkslab.com/avira-deserialize-delete-and-escalate-the-proper-way-to-use-an-av.html

Google Confirms Trio Of Critical Chrome Security Vulnerabilities https://www.forbes.com/sites/daveywinder/2026/03/06/google-confirms-trio-of-critical-chrome-security-vulnerabilities/ #cybersecurity #Chrome #browser #vulnerabilities #update #restartnow

⚠️ AI-generated bug reports flood Firefox maintainers #Claude Opus 4.6 scanned 6k C++ files and sent 112 bug reports in two weeks. 22 confirmed vulnerabilities (14 high severity), nearly 20% of all Firefox high-severity bugs fixed in 2025. #AIsecurity #Firefox #Vulnerabilities

Partnering with Mozilla to imp...

Anthropic (@AnthropicAI)

Mozilla와 협력해 Claude의 Firefox 취약점 탐지 능력을 테스트한 결과, Opus 4.6이 2주 만에 22개의 취약점을 찾아냈고 그중 14개는 고위험으로 확인되어 2025년에 Mozilla가 수정한 고위험 버그의 5분의 1에 해당한다고 보고했습니다. 자동화된 취약점 탐지 능력이 크게 향상되었음을 시사합니다.

https://x.com/AnthropicAI/status/2029978909207617634

#anthropic #claude #mozilla #vulnerabilities #security

Feds take notice of #iOS #vulnerabilities #exploited under mysterious circumstances

The #Cybersecurity and #Infrastructure #Security Agency has ordered federal agencies to #patch three critical iOS vulnerabilities that were exploited over a 10-month span in #hacking campaigns conducted by three distinct groups.
#privacy

https://arstechnica.com/security/2026/03/cisa-adds-3-ios-flaws-to-its-catalog-of-known-exploited-vulnerabilities/

Feds take notice of iOS vulnerabilities exploited under mysterious circumstances https://arstechni.ca/XM4e #vulnerabilities #Security #exploits #iPhones #Biz&IT #Apple #iOS

#CheckPoint Research has discovered critical #vulnerabilities in #Anthropic’s #Claude Code that allow attackers to achieve remote code execution and steal API credentials through malicious project configurations. Stolen keys can provide access to shared Workspaces for file access and tampering. Anthropic patched the issues, including CVE-2025-59536.

https://research.checkpoint.com/2026/rce-and-api-token-exfiltration-through-claude-code-project-files-cve-2025-59536/

A Possible #US Government #iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals
A highly sophisticated set of iPhone hijacking tools has infected tens of thousands of phones or more. Clues suggest it was originally built for the US government.
In total, #Coruna takes advantage of 23 distinct #vulnerabilities in #iOS, a rare collection of hacking components that suggests it was created by a well-resourced, likely state-sponsor.
https://www.wired.com/story/coruna-iphone-hacking-toolkit-us-government/
https://archive.ph/vN8U5

Топ самых интересных CVE за февраль 2026 года

Всем привет! Разбираем ключевые CVE ушедшего месяца в нашей традиционной подборке. Февраль отметился RCE в продуктах BeyondTrust — 9.9 по CVSS с активно идущей эксплуатацией. Фичевый блоут привёл к RCE в блокноте Windows: вектором атаки через произвольные команды стала добавленная поддержка Markdown, и это вызвало шквал критики в адрес Microsoft. Помимо этого, в Google Chrome исправили первый 0-day 2026-го c идущим эксплойтом, а символические ссылки на этот раз подвели Apple: во множестве её продуктов состояние гонки при их обработке. В Content API Ghost закрыли внедрение SQL, в Gogs — обход двухфакторки, а в продуктах от Microsoft — полдюжины эксплуатируемых нулевых дней. Об этом и других интересных уязвимостях февраля читайте под катом!

https://habr.com/ru/companies/tomhunter/articles/1006514/

#cve #vulnerability #vulnerability_assessment #vulnerabilities #vulnerability_research #уязвимости #уязвимость_нулевого_дня #уязвимости_и_их_эксплуатация

A Possible US Gov iPhone- #Hacking Toolkit Is Now In the Hands of Foreign Spies, Criminals

#Security researchers say highly sophisticated #iPhone #exploitation toolkit dubbed "#Coruna ," which possibly originated from a US gov contractor, has spread from suspected #Russian #espionage operations to crypto-stealing criminal campaigns. #Apple has patched the exploited #vulnerabilities in newer #iOS versions, but tens of thousands of devs may have already been compromised

https://apple.slashdot.org/story/26/03/03/2049253/a-possible-us-government-iphone-hacking-toolkit-is-now-in-the-hands-of-foreign-spies-criminals

😱 OMG, 224k #OpenClaw servers have decided to show off their #vulnerabilities like a reality TV show! 🎉 Instead of fixing the leaks, they've opted for a passive-aggressive list to *gently* remind admins that maybe, just maybe, #security is important. 🚨 In other news, Vivgrid is here to sell you some snake oil for your #AI woes. 🐍🔧
https://openclaw.allegro.earth/ #SnakeOil #Awareness #HackerNews #ngated

Password Managers Expose Hidden Vulnerabilities in Latest Study

📰 Original title: Password Managers Share a Hidden Weakness

🤖 IA: It's not clickbait ✅
👥 Usuarios: It's not clickbait ✅

View full AI summary: https://killbait.com/en/password-managers-expose-hidden-vulnerabilities-in-latest-study/?redirpost=0b8442c4-bbaf-4f8e-ab9d-85cc621a0c11

#technology #passwordmanagers #cybersecurity #vulnerabilities

Password Managers Expose Hidden Vulnerabilities in Latest Study

📰 Original title: Password Managers Share a Hidden Weakness

🤖 IA: It's not clickbait ✅
👥 Usuarios: It's not clickbait ✅

View full AI summary: https://killbait.com/posts/post/0b8442c4-bbaf-4f8e-ab9d-85cc621a0c11

#technology #passwordmanagers #cybersecurity #vulnerabilities

It’s been a busy week across the threat landscape, with critical patches, fresh ransomware victims, and AI continuing to reshape both attack and defence.

#cybersecurity #patching #ransomware #AI #vulnerabilities

https://cybernewsweekly.substack.com/p/cybersecurity-news-review-week-9-c2f

How One Hack Nearly Took Down The Internet - YouTube
https://www.youtube.com/watch?v=aoag03mSuXQ
#Veritasium #Technology #Science #Tech #Computers #Hacking #Vulnerabilities #RichardStallman

The History of a Security Hole

https://www.os2museum.com/wp/the-history-of-a-security-hole/

#HackerNews #SecurityHistory #CyberSecurity #Vulnerabilities #InfoSec #TechHistory

Major #Vulnerabilities in #mental #health #apps

https://www.technewsro.blog/vulnerabilitati-majore-n-aplicatiile-de-sanatate-mintala/