SC Staff

Salesforce Experience Cloud misconfigurations exploited by ShinyHunters

• patchconfiguration-management
• threat-intelligence

Salesforce Experience Cloud misconfigurations exploited by ShinyHunters

SC Staff March 10, 2026

Attackers are leveraging a modified version of the open-source AuraInspector tool to target the /s/sfsites/aura API endpoint...

Read More Read more about Salesforce Experience Cloud misconfigurations exploited by ShinyHunters

New HHS toolkit helps healthcare sector gauge cyber preparedness

• Uncategorized

New HHS toolkit helps healthcare sector gauge cyber preparedness

SC Staff March 9, 2026

Cybersecurity Dive reports that the Department of Health and Human Services has released an updated Risk Identification...

Read More Read more about New HHS toolkit helps healthcare sector gauge cyber preparedness

Opposition fails to deter House committee’s advancement of child online safety bill

• Uncategorized

Opposition fails to deter House committee’s advancement of child online safety bill

SC Staff March 9, 2026

The Kids Internet and Digital Safety (KIDS) Act advanced in a party-line vote by the House Energy...

Read More Read more about Opposition fails to deter House committee’s advancement of child online safety bill

Bipartisan energy cybersecurity bills gain House panel nod

• Uncategorized

Bipartisan energy cybersecurity bills gain House panel nod

SC Staff March 9, 2026

The House Energy and Commerce Committee has approved a bipartisan energy cybersecurity-focused bill package, which is led...

Read More Read more about Bipartisan energy cybersecurity bills gain House panel nod

Qilin purports breach of US electric cooperative

• ransomware

Qilin purports breach of US electric cooperative

SC Staff March 9, 2026

Tennessee Valley Electric Cooperative, which caters to West Tennessee's Wayne and Hardin Counties, had its systems claimed...

Read More Read more about Qilin purports breach of US electric cooperative

Massive GitHub, DockerHub private key leaks impact corporations, governments

• identity

Massive GitHub, DockerHub private key leaks impact corporations, governments

SC Staff March 9, 2026

More than 900 of 2,622 active and valid TLS certificates matched with private keys inadvertently exposed on...

Read More Read more about Massive GitHub, DockerHub private key leaks impact corporations, governments

Fake CleanMyMac site facilitates SHub Stealer malware injection

• malware
• threat-intelligence

Fake CleanMyMac site facilitates SHub Stealer malware injection

SC Staff March 9, 2026

Cybernews reports that widely used macOS utility CleanMyMac had its website impersonated to deploy the SHub Stealer...

Read More Read more about Fake CleanMyMac site facilitates SHub Stealer malware injection

Amatera infostealer deployed via phony Claude Code guides

• malware
• threat-intelligence

Amatera infostealer deployed via phony Claude Code guides

SC Staff March 9, 2026

Fake installation guide pages for Anthropic's Claude Code have been leveraged to spread the Amatera information-stealing malware...

Read More Read more about Amatera infostealer deployed via phony Claude Code guides

Lumma Stealer-spreading ClickFix attack uncovered

• malware
• threat-intelligence

Lumma Stealer-spreading ClickFix attack uncovered

SC Staff March 9, 2026

Threat actors have exploited the Windows Terminal app to facilitate the distribution of the Lumma Stealer malware...

Read More Read more about Lumma Stealer-spreading ClickFix attack uncovered

Trio of RATs deployed in VOID#GEIST malware campaign

• malware
• threat-intelligence

Trio of RATs deployed in VOID#GEIST malware campaign

SC Staff March 9, 2026

Multiple batch scripts have been weaponized to facilitate the delivery of the XWorm, AsyncRAT, and Xeno RAT...

Read More Read more about Trio of RATs deployed in VOID#GEIST malware campaign