CIRCLE WITH A DOT

One week to go! The countdown is on for this new edition. Now’s the time to organize your agenda. Download our mobile app, add your favorite talks, and create your ideal schedule. Don't wait, your perfect day is just a tap away: https://insomnihack.ch/our-mobile-application-is-ready/?utm_source=mastodon&utm_medium=image&utm_campaign=Insomnihack2026&utm_content=1203#InsomniHack #Cybersecurity #Infosec #INSO26 #CyberConference

Possible Phishing on: ️hxxps[:]//www[.]robiox[.]com[.]py/users/272374771787/profile 🧬 Analysis at: https://urldna.io/scan/69b1b5663b7750000943e06d#cybersecurity #phishing #infosec #urldna #scam #infosec

New SecuritySnack: How attackers are abusing CloudFlare to hide M365 phishing campaigns. ️️️Read the technical breakdown here: https://dti.domaintools.com/securitysnacks/securitysnack-cloudflare-anti-security-for-phishing #CyberSecurity #Phishing #CloudSecurity #Infosec

Iranian influence operation using fake personas to deceive US Instagram users disrupted, Meta says https://therecord.media/iran-instagram-influence-operation-disrupted #cybersecurity #infosec

Possible Phishing on: ️hxxps[:]//czhfjdhjxshhvsvjk[.]weebly[.]com 🧬 Analysis at: https://urldna.io/scan/69b159693b775000096ac5b7#cybersecurity #phishing #infosec #urldna #scam #infosec

New ransom group blog post!Group name: incransomPost title: thethibeauxfirm.comInfo: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec

New ransom group blog post!Group name: incransomPost title: Kentucky InjuryInfo: https://cti.fyi/groups/incransom.html#ransomware #cti #threatintelligence #cybersecurity #infosec

New ransom group blog post!Group name: akiraPost title: Robinson NurseryInfo: https://cti.fyi/groups/akira.html#ransomware #cti #threatintelligence #cybersecurity #infosec

New ransom group blog post!Group name: akiraPost title: Murray's CheeseInfo: https://cti.fyi/groups/akira.html#ransomware #cti #threatintelligence #cybersecurity #infosec

New ransom group blog post!Group name: akiraPost title: D3 EmbeddedInfo: https://cti.fyi/groups/akira.html#ransomware #cti #threatintelligence #cybersecurity #infosec

Aryaka, posted yesterday: Kernel in the Crosshairs: The BlackSanta Threat Campaign Targeting Recruitment Workflows https://www.aryaka.com/blog/kernel-in-the-crosshairs-blacksanta-edr-killer-recruitment-workflows/More:Infosecurity-Magazine: BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign https://www.infosecurity-magazine.com/news/blacksanta-edr-killer-targets-hr/ #infosec #threatresearch

Rapid7 posted this yesterday: When Trusted Websites Turn Malicious: WordPress Compromises Advance Global Stealer Operation https://www.rapid7.com/blog/post/tr-malicious-websites-wordpress-compromise-advances-global-stealer-operation/ @Rapid7Official More:Infosecurity-Magazine: Compromised WordPress Sites Deliver ClickFix Attacks in Global Infostealer Campaign https://www.infosecurity-magazine.com/news/wordpress-clickfix-infostealer/ #infosec #WordPress #vulnerability

@cR0w @thehackernews

Critical Authentication Bypass in Honeywell IQ4x BMS Controllers Allows Remote TakeoverHoneywell IQ4x BMS controllers contain a maximum severity critical vulnerability (CVE-2026-3611) that allows unauthenticated attackers to create administrative accounts and take full control of building management systems.**If you are using Honeywell IQ4x Building Management System (or any BMS), make sure it's isolated from the internet and accessible only from trusted networks. Then reach out to Honeywell for updates. Don't wait to isolate your systems. This is maximum severity flaw, and it will be exploited very soon.**#cybersecurity #infosec #advisory #vulnerabilityhttps://beyondmachines.net/event_details/critical-authentication-bypass-in-honeywell-iq4x-bms-controllers-allows-remote-takeover-j-p-z-w-f/gD2P6Ple2L

Possible Phishing on: ️hxxps[:]//joko938urih[.]vercel[.]app/cmo[.]html? 🧬 Analysis at: https://urldna.io/scan/69b121133b77500006b51834#cybersecurity #phishing #infosec #urldna #scam #infosec

ASN: AS197540Location: Nürnberg, DEAdded: 2026-03-01T11:53#shodansafari #infosec

CVE-2026-2631 (CRITICAL): Datalogics Ecommerce Delivery WP plugin (<2.6.60) lets unauthenticated attackers gain admin via REST endpoint. Patch or restrict access now! Details: https://radar.offseq.com/threat/cve-2026-2631-cwe-269-improper-privilege-managemen-beccaec0 #OffSeq #WordPress #Vuln #Infosec

ASN: AS45899Location: Tuy Hòa, VNAdded: 2026-03-07T07:20#shodansafari #infosec

Security News Digest - 2026-03-11 5 updates from 3 sources: Security Boulevard: Protecting OTP & Magic Link Endpoints from Abuse: IP Reputation, Rate Limiting, and Suspicious IP Throttling https://securityboulevard.com/2026/03/protecting-otp-magic-link-endpoints-from-abuse-ip-reputation-rate-limiting-and-suspicious-ip-throttling/ The Hacker News: UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours https://thehackernews.com/2026/03/unc6426-exploits-nx-npm-supply-chain.html Security Boulevard: What Is an Exposure Assessment Platform — And Why Your Website Is the Blind Spot https://securityboulevard.com/2026/03/what-is-an-exposure-assessment-platform-and-why-your-website-is-the-blind-spot/ SecurityWeek: ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Moxa, Mitsubishi Electric https://www.securityweek.com/ics-patch-tuesday-vulnerabilities-fixed-by-siemens-schneider-moxa-mitsubishi-electric/ Security Boulevard: Who Actually Owns This Service Account? https://securityboulevard.com/2026/03/who-actually-owns-this-service-account/#InfoSec #SecurityNews

The Live Terminal feature of Cortex XDR can be abused by attackers as a pre-installed, EDR-trusted C2 channelhttps://labs.infoguard.ch/posts/abusing_cortex_xdr_live_response_as_c2#infosec #cybersecurity #redteam #pentest