threat-intelligence

VMware Aria Operations flaw added to list of exploited vulnerabilities

• patchconfiguration-management
• threat-intelligence
• threat-management
• vulnerability-management

VMware Aria Operations flaw added to list of exploited vulnerabilities

Steve Zurier March 4, 2026

Broadcom patched the flaw on Feb. 24, but CISA added VMware vulnerability after exploitation.

Read More Read more about VMware Aria Operations flaw added to list of exploited vulnerabilities

New Starkiller phishing kit bypasses MFA, mimics legitimate sites

• identity
• phishing
• threat-intelligence

New Starkiller phishing kit bypasses MFA, mimics legitimate sites

SC Staff March 4, 2026

Starkiller operates by launching a headless Chrome browser within a Docker container, acting as a reverse proxy...

Read More Read more about New Starkiller phishing kit bypasses MFA, mimics legitimate sites

Iran’s Ariomex crypto exchange suffers major data leak, exposing user and transaction data

• threat-intelligence

Iran’s Ariomex crypto exchange suffers major data leak, exposing user and transaction data

SC Staff March 4, 2026

The leaked database contains 11,826 records, with approximately 7,710 originating from Iran.

Read More Read more about Iran’s Ariomex crypto exchange suffers major data leak, exposing user and transaction data

Iran targets Iraqi government officials with multiple new malware strains

• malware
• threat-intelligence

Iran targets Iraqi government officials with multiple new malware strains

SC Staff March 4, 2026

Infosecurity Magazine reports that Iranian threat operation Dust Specter has spoofed Iraq's Ministry of Foreign Affairs to...

Read More Read more about Iran targets Iraqi government officials with multiple new malware strains

Trojanized Israeli rocket warning app spread in cyberespionage campaign

• threat-intelligence

Trojanized Israeli rocket warning app spread in cyberespionage campaign

SC Staff March 4, 2026

Israeli civilians have been targeted with SMS phishing attacks spreading a fraudulent version of the country's Red...

Read More Read more about Trojanized Israeli rocket warning app spread in cyberespionage campaign

Iranian, pro-Russia hackers unite after US, Israel attacks

• threat-intelligence

Iranian, pro-Russia hackers unite after US, Israel attacks

SC Staff March 4, 2026

Iran-linked threat operations have joined forces with pro-Russia hacktivist groups in deploying cyberattacks against critical infrastructure in...

Read More Read more about Iranian, pro-Russia hackers unite after US, Israel attacks

Coruna exploit kit: Suspected government hacking tools surface in cybercriminal hands

• threat-intelligence
• vulnerability-management

Coruna exploit kit: Suspected government hacking tools surface in cybercriminal hands

SC Staff March 4, 2026

The Coruna exploit kit utilizes a "watering hole" attack method, where visiting a malicious website containing the...

Read More Read more about Coruna exploit kit: Suspected government hacking tools surface in cybercriminal hands

Microsoft flags phishing campaign abusing Entra ID, Google OAuth links

• identity
• phishing
• threat-intelligence
• threat-management

Microsoft flags phishing campaign abusing Entra ID, Google OAuth links

Laura French March 4, 2026

The OAuth URLs intentionally include an invalid scope, forcing redirection to malicious sites.

Read More Read more about Microsoft flags phishing campaign abusing Entra ID, Google OAuth links

North Korea, DOJ, APT 28, Anthropic, OpenClaw, Supply Chain, Josh Marpet, and More – SWN #560

• supply-chain
• threat-intelligence

North Korea, DOJ, APT 28, Anthropic, OpenClaw, Supply Chain, Josh Marpet, and More – SWN #560

Aaran Leyland March 3, 2026

Read More Read more about North Korea, DOJ, APT 28, Anthropic, OpenClaw, Supply Chain, Josh Marpet, and More – SWN #560

Novel CyberStrikeAI tool exploited in attacks

• network-security
• threat-intelligence

Novel CyberStrikeAI tool exploited in attacks

SC Staff March 3, 2026

Attackers behind the recent AI-assisted hacking of hundreds of Fortinet FortiGate firewalls worldwide have weaponized the new...

Read More Read more about Novel CyberStrikeAI tool exploited in attacks