SC Staff

SpyCloud report reveals surge in exposed API keys and machine identities

• identity

SpyCloud report reveals surge in exposed API keys and machine identities

SC Staff March 20, 2026

The 2026 Identity Exposure Report details a growing attack surface involving non-human identities (NHIs), with 18.1 million...

Read More Read more about SpyCloud report reveals surge in exposed API keys and machine identities

Google reverses Android developer verification requirement amidst user backlash

• Uncategorized

Google reverses Android developer verification requirement amidst user backlash

SC Staff March 20, 2026

The original plan, set to take effect in September 2026, mandated that apps on certified Android devices...

Read More Read more about Google reverses Android developer verification requirement amidst user backlash

Oasis Security raises $120 million for non-human identity management

• identity
• security-operations

Oasis Security raises $120 million for non-human identity management

SC Staff March 20, 2026

Founded in 2022, Oasis Security focuses on securing machine identities like service accounts, APIs, and workloads, which...

Read More Read more about Oasis Security raises $120 million for non-human identity management

Magento stores vulnerable to ‘PolyShell’ exploit

• vulnerability-management

Magento stores vulnerable to ‘PolyShell’ exploit

SC Staff March 20, 2026

The "PolyShell" vulnerability stems from how Magento's REST API handles file uploads for cart item custom options.

Read More Read more about Magento stores vulnerable to ‘PolyShell’ exploit

Perseus Android malware evolves from Cerberus and Phoenix for device takeover

• malware

Perseus Android malware evolves from Cerberus and Phoenix for device takeover

SC Staff March 20, 2026

Perseus is distributed through dropper apps found on phishing sites, masquerading as IPTV services to trick users...

Read More Read more about Perseus Android malware evolves from Cerberus and Phoenix for device takeover

New Speagle malware hijacks Cobra DocGuard for data theft

• malware
• threat-intelligence

New Speagle malware hijacks Cobra DocGuard for data theft

SC Staff March 20, 2026

Speagle is designed to target only systems equipped with Cobra DocGuard, a document security and encryption platform.

Read More Read more about New Speagle malware hijacks Cobra DocGuard for data theft

Navia Benefit Solutions breach exposes data of 2.7 million individuals

• Uncategorized

Navia Benefit Solutions breach exposes data of 2.7 million individuals

SC Staff March 20, 2026

The breach impacted Navia's systems between December 22, 2025, and January 15, 2026, with suspicious activity discovered...

Read More Read more about Navia Benefit Solutions breach exposes data of 2.7 million individuals

Ubiquiti patches critical vulnerabilities in UniFi Network Application

• network-security
• patchconfiguration-management
• vulnerability-management

Ubiquiti patches critical vulnerabilities in UniFi Network Application

SC Staff March 20, 2026

The most severe vulnerability, tracked as CVE-2026-22557, impacts UniFi Network application versions 10.1.85 and earlier.

Read More Read more about Ubiquiti patches critical vulnerabilities in UniFi Network Application

French aircraft carrier location exposed by sailor’s Strava activity

• Uncategorized

French aircraft carrier location exposed by sailor’s Strava activity

SC Staff March 20, 2026

A French naval officer, identified only as Arthur, used his smartwatch to record a 7-kilometer run on...

Read More Read more about French aircraft carrier location exposed by sailor’s Strava activity

Malicious IDE extension targets developers, uses Solana blockchain for C2

• malware
• security-operations

Malicious IDE extension targets developers, uses Solana blockchain for C2

SC Staff March 20, 2026

The attack utilizes a fake extension disguised as a legitimate tool for the R programming language, named...

Read More Read more about Malicious IDE extension targets developers, uses Solana blockchain for C2