EPISODE · Mar 20, 2026 · 4 MIN
Mar 20, 2026 · #1
from Security Brief Daily · host Security Brief Daily
Episode 1 — 20 Mar 2026 1. International joint action disrupts world’s largest DDoS botnets Source: Bleeping Computer Authorities from the United States, Germany, and Canada have taken down Command and Control (C2) infrastructure used by the Aisuru, KimWolf, JackSkid, and Mossad botnets to infect Internet of Things (IoT) devices. The joint law enforcement action also targeted virtual... 2. Russian hackers exploit Zimbra flaw in Ukrainian govt attacks Source: Bleeping Computer Hackers part of APT28, a state-backed threat group linked to Russia's military intelligence service (GRU), are exploiting a Zimbra Collaboration Suite (ZCS) vulnerability in attacks targeting Ukrainian government entities. This high-severity security flaw (tracked as... 3. Microsoft: March Windows updates break Teams, OneDrive sign-ins Source: Bleeping Computer Microsoft says the March Windows 11 update breaks sign-ins with Microsoft accounts across multiple Microsoft apps, including Teams and OneDrive. These sign-in issues appear after installing the KB5079473 cumulative update Microsoft released last week as part of this month's... 4. FBI seizes Handala data leak site after Stryker cyberattack Source: Bleeping Computer The FBI has seized two websites used by the Handala hacktivist group after the threat actors conducted a destructive cyberattack on medical technology giant Stryker that wiped approximately 80,000 devices. Both the hacktivist's handala-redwanted[.]to and handala-hack[.]to... 5. Critical Langflow Vulnerability Exploited Hours After Public Disclosure Source: Security Week Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution. The post Critical Langflow Vulnerability Exploited Hours After Public Disclosure 6. 54 EDR Killers Use BYOVD to Exploit 35 Signed Vulnerable Drivers and Disable Security Source: The Hacker News A new analysis of endpoint detection and response (EDR) killers has revealed that 54 of them leverage a technique known as bring your own vulnerable driver (BYOVD) by abusing a total of 35 vulnerable drivers. EDR killer programs have been a common presence in ransomware... 7. Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers Source: The Hacker News Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. "Speagle is designed to surreptitiously harvest sensitive information from infected computers and transmit it... 8. Bitrefill blames North Korean Lazarus group for cyberattack Source: Bleeping Computer Crypto-powered gift card store Bitrefill says that the attack it suffered at the beginning of the month was likely perpetrated by North Korean hackers of the Bluenoroff group. During the investigation, the platform observed indicators similar to previous attacks attributed to...
What this episode covers
Episode 1 — 20 Mar 2026 1. International joint action disrupts world’s largest DDoS botnets Source: Bleeping Computer Authorities from the United States, Germany, and Canada have taken down Command and Control (C2) infrastructure used by the Aisuru, KimWolf, JackSkid, and Mossad botnets to infect Internet of Things (IoT) devices. The joint law enforcement action also targeted virtual... 2. Russian hackers exploit Zimbra flaw in Ukrainian govt attacks Source: Bleeping Computer Hackers part of APT28, a state-backed threat group linked to Russia's military intelligence service (GRU), are exploiting a Zimbra Collaboration Suite (ZCS) vulnerability in attacks targeting Ukrainian government entities. This high-severity security flaw (tracked as... 3. Microsoft: March Windows updates break Teams, OneDrive sign-ins Source: Bleeping Computer Microsoft says the March Windows 11 update breaks sign-ins with Microsoft accounts across multiple Microsoft apps, including Teams and OneDrive. These sign-in issues appear after installing the KB5079473 cumulative update Microsoft released last week as part of this month's... 4. FBI seizes Handala data leak site after Stryker cyberattack Source: Bleeping Computer The FBI has seized two websites used by the Handala hacktivist group after the threat actors conducted a destructive cyberattack on medical technology giant Stryker that wiped approximately 80,000 devices. Both the hacktivist's handala-redwanted[.]to and handala-hack[.]to... 5. Critical Langflow Vulnerability Exploited Hours After Public Disclosure Source: Security Week Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution. The post Critical Langflow Vulnerability Exploited Hours After Public Disclosure 6. 54 EDR Killers Use BYOVD to Exploit 35 Signed Vulnerable Drivers and Disable Security Source: The Hacker News A new analysis of endpoint detection and response (EDR) killers has revealed that 54 of them leverage a technique known as bring your own vulnerable driver (BYOVD) by abusing a total of 35 vulnerable drivers. EDR killer programs have been a common presence in ransomware... 7. Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers Source: The Hacker News Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. "Speagle is designed to surreptitiously harvest sensitive information from infected computers and transmit it... 8. Bitrefill blames North Korean Lazarus group for cyberattack Source: Bleeping Computer Crypto-powered gift card store Bitrefill says that the attack it suffered at the beginning of the month was likely perpetrated by North Korean hackers of the Bluenoroff group. During the investigation, the platform observed indicators similar to previous attacks attributed to...
NOW PLAYING
Mar 20, 2026 · #1
No transcript for this episode yet
Similar Episodes
No similar episodes found.
Similar Podcasts
No similar podcasts found.