Little fires everywhere for March Patch Tuesday
Just 57 CVEs to contend with (plus advisories), but six are already under exploit in the wild
Similar Posts
RedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt Deployment
Bys sThe Russian-speaking hacking group called RedCurl has been linked to a ransomware campaign for the first time, marking a departure in the threat actor’s tradecraft. The activity, observed by Romanian cybersecurity company Bitdefender, involves the deployment of a never-before-seen ransomware strain dubbed QWCrypt. RedCurl, also called Earth Kapre and Red Wolf, has a history of…
Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking
Bys sBogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a threat actor tracked as Silver Fox, with prior attack campaigns primarily targeting Chinese-speaking regions like Hong Kong, Taiwan, and Mainland China. “This actor has increasingly targeted…
When Attacks Come Faster Than Patches: Why 2026 Will be the Year of Machine-Speed Security
Bys sThe Race for Every New CVE Based on multiple 2025 industry reports: roughly 50 to 61 percent of newly disclosed vulnerabilities saw exploit code weaponized within 48 hours. Using the CISA Known Exploited Vulnerabilities Catalog as a reference, hundreds of software flaws are now confirmed as actively targeted within days of public disclosure. Each new…
Kaufman County’s data breach was their second one in three weeks
Bys sRachel Means reports that the October 20 cyberattack that Kaufman County, Texas, confirmed yesterday was actually the second breach the county had in October. Kaufman County officials have confirmed that a second data breach earlier this month may have compromised personal information, marking the second computer security incident in October. In a letter sent to……
Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign
Bys sCybersecurity researchers have disclosed details of an active web traffic hijacking campaign that has targeted NGINX installations and management panels like Baota (BT) in an attempt to route it through the attacker’s infrastructure. Datadog Security Labs said it observed threat actors associated with the recent React2Shell (CVE-2025-55182, CVSS score: 10.0) exploitation using malicious NGINX
How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack
Bys sJoseph Cox of 404 Media in collaboration with Court Watch writes: The FBI managed to track down and freeze millions of dollars of cryptocurrency Caesars Entertainment sent to a group of hackers that held the casino’s computer systems ransom, according to a 404 Media and Court Watch review of a recently unsealed court document. According…