Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager on March 21, 2026 Posted by The Hacker News
CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026 on March 21, 2026 Posted by The Hacker News
Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages on March 21, 2026March 21, 2026 Posted by The Hacker News
Friday Squid Blogging: Jumbo Flying Squid in the South Pacific on March 20, 2026 Posted by Bruce Schneier
Posted in Apple Smashing Security podcast #459: This clever scam nearly hijacked a tech CEO’s Apple ID on March 18, 2026 Graham Cluley
Posted in Guest blog Fraudsters are using public planning records to target permit applicants on March 12, 2026 Graham Cluley
Posted in Guest blog Your Signal account is safe – unless you fall for this trick on March 12, 2026 Graham Cluley
Posted in 2FA How hackers bypassed MFA with a $120 phishing kit – until a global takedown shut it down on March 6, 2026 Graham Cluley
Posted in cryptocurrency Phishing Attacks Against People Seeking Programming Jobs on February 27, 2026 Bruce Schneier
Posted in data breach Smashing Security podcast #446: A hacker doxxes himself, and social engineering-as-a-service on December 3, 2025 Graham Cluley
Posted in account hacking FBI warns of surge in account takeover (ATO) fraud schemes – what you need to know on December 3, 2025 Graham Cluley
