Security Articles

Cloudflare describes the design and engineering behind their revamped Security Overview dashboard, built to shift security teams from reactive monitoring to proactive action.

Security Posture Management

Application Security

Docker

01 min read

Security•2026-03-10

What’s Holding Back AI Agents? It’s Still Security

This post examines why security remains the primary obstacle to widespread AI agent deployment, featuring practical approaches using containerization and sandboxing.

The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction

This article explains how proactive attack surface reduction can help security teams avoid the chaotic scramble that follows zero-day vulnerability disclosures.

The Hacker News

01 min read

Security•2026-03-10

APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military

This article covers APT28 (Fancy Bear/Sednit), a Russian GRU-affiliated threat actor, using two malware implants—BEARDSHELL and COVENANT—to conduct long-term surveillance of Ukrainian military personnel since April 2024.

The Hacker News

11 min read

Security•2026-03-10

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

Salesforce warns of threat actors mass-scanning Experience Cloud sites using a modified version of the open-source AuraInspector tool to exploit misconfigured guest user settings.

The Hacker News

11 min read

Security•2026-03-10

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

CISA added three actively exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog targeting SolarWinds, Ivanti, and Omnissa products.

Cloudflare

31 min read

Security•2026-03-10

Translating risk insights into actionable protection: leveling up security posture with Cloudflare and Mastercard

Cloudflare and Mastercard are partnering to integrate RiskRecon attack surface intelligence into the Cloudflare Security Insights dashboard, enabling continuous discovery and remediation of internet-facing blind spots.

Security Posture Management

Analyzing first-party fraud trends: Account, free trial, and refund abuse

Stripe analyzes three fast-growing types of first-party fraud detected across its network from late 2025 to early 2026.

GitLab

110 min read

Security•2026-03-10

Automating detection gap analysis with GitLab Duo Agent Platform

GitLab's Signals Engineering team automated post-incident detection gap analysis using the GitLab Duo Agent Platform with two AI agents.

The Hacker News

01 min read

Security•2026-03-09

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

A malicious npm package named @openclaw-ai/openclawai was discovered posing as an OpenClaw installer to deploy a RAT and steal sensitive macOS data, tracked as GhostClaw by JFrog.

How Advanced Browsing Protection Works in Messenger

This post explains the cryptographic infrastructure behind Advanced Browsing Protection (ABP) in Messenger, which detects malicious links without exposing user query data to the server.

Security & Privacy

Google Cloud