Security Articles

This article examines how attackers exploit SOC analyst workload as an attack surface by flooding organizations with high-volume phishing campaigns to hide targeted spear-phishing attempts.

The Hacker News

21 min read

Security•2026-03-12

Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit

Apple has backported security fixes for older iOS and iPadOS devices to address vulnerabilities exploited by the Coruna exploit kit.

The Hacker News

41 min read

Security•2026-03-12

Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets

Six new Android malware families targeting financial apps, payment platforms, and crypto wallets have been discovered by cybersecurity researchers.

The Hacker News

11 min read

Security•2026-03-12

CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed

CISA has added a critical remote code execution vulnerability in n8n (CVE-2025-68613) to its Known Exploited Vulnerabilities catalog, with over 24,700 unpatched instances still exposed online.

Cloudflare

11 min read

Security•2026-03-12

Announcing Cloudflare Account Abuse Protection: prevent fraudulent attacks from bots and humans

Cloudflare introduces Account Abuse Protection, a new fraud prevention suite targeting both automated and human-driven account abuse.

Mitigating The Risk of Prompt Injection for AI Agents on Databricks

This post explains how to mitigate prompt injection risks for AI agents on Databricks using the Agents Rule of Two framework.

Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four Minutes

Researchers demonstrate how Perplexity's Comet AI browser can be manipulated into executing phishing scams within four minutes using a GAN-based attack.

The Hacker News

21 min read

Security•2026-03-11

Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials

Two critical security vulnerabilities in the n8n workflow automation platform have been disclosed and patched, enabling remote code execution and credential theft.

The Hacker News

01 min read

Security•2026-03-11

Meta Disables 150K Accounts Linked to Southeast Asia Scam Centers in Global Crackdown

Meta disabled over 150,000 accounts linked to Southeast Asia scam centers in a coordinated global crackdown involving 11 countries.

Cloudflare

51 min read

Security•2026-03-11

AI Security for Apps is now generally available

Cloudflare announces the general availability of AI Security for Apps, a reverse-proxy solution for detecting and mitigating threats to AI-powered applications.

Welcoming Wiz to Google Cloud: Redefining security for the AI era

Google has completed its acquisition of Wiz, a leading cloud and AI security platform, to strengthen its security offerings for the AI era.

Dozens of Vendors Patch Security Flaws Across Enterprise Software and Network Devices

This article covers a wave of security patches released by dozens of vendors addressing critical vulnerabilities in enterprise software and network devices.