For March, Patch Tuesday delivers fixes for 83 vulnerabilities

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log ...
Security Boulevard

Fake Temu Coin airdrop uses ClickFix trick to install stealthy malware

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.
InfoWorld

Coding for agents

Savvy developers are realizing the advantages of writing explicit, consistent, well-documented code that agents easily understand. Boring makes agents more reliable.
Infosecurity Magazine

What CISOs Should Know (And Do) About OpenClaw

Infosecurity spoke to several experts to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities ...
Security Boulevard

China-nexus Threat Actor Targets Persian Gulf Region With PlugX

IntroductionOn March 1, 2026, ThreatLabz observed new activity from a China-nexus threat actor targeting countries in the Persian Gulf region. The activity took place within the first 24 hours of the ...
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

合法软件武器化:新型钓鱼攻击链分析与动态防御重构

近期,Neowin报道了一起极具代表性的新型网络钓鱼活动,揭示了攻击者如何利用合法软件作为载体劫持用户计算机。在该案例中,攻击者并未直接分发含有恶意代码的可执行文件,而是诱导用户下载并运行完全合法、拥有有效数字签名的软件工具(如AnyDesk、Tea ...