🛡️ #Cybersecurity news & tips across the #fediverse

“🔒 Security News Digest - 2026-03-24 📊 18 updates from 7 sources: 🔹 Security Boulevard: How to Enroll a Code Signing Certificate in Sectigo Certificate Manager?
https:// securityboulevard.com/2026/03/ how-to-...”

https://infosec.exchange/@securityfeed/116284369923015611

🤖 via RSS feed. Not an endorsement.

Spring Cleaning

https://firewallsdontstopdragons.com/spring-cleaning/

#privacy #cybersecurity #guide

#VoidStealer #malware steals #Chrome master key via debugger trick

https://www.bleepingcomputer.com/news/security/voidstealer-malware-steals-chrome-master-key-via-debugger-trick/

#cybersecurity

📜 Scrolls 34 is out (delayed ☺️)! Lots of #indieweb #fediverse + #infosec / #cybersecurity stuff to scroll thru 🤗

https://shellsharks.com/scrolls/scroll/2026-03-24

Thanks to everyone mentioned below! Their work is featured this week.

@tbaxter @tarandir @daj @dovydas @ChrisPirillo @vale @robb @ewen @revstanton @openssf @fabio @brine @mrv404 @occult @js @grickle @rhyswynne @Greensleeves @lisacmuth @jschauma @brennan @privacyguides @gaborbernat @frankm @the @sethmlarson @netkitty @GrubDog @hamatti @foosel @gedankenstuecke

🛡️ #Cybersecurity news & tips across the #fediverse 👇

“🚨 CVE-2026-4739 (CRITICAL, CVSS 9.4) in ITK: Integer overflow in Expat XML parser enables remote code execution or DoS in medical/scientific apps. Update to v2.7.1 now. User interaction required. Details: https:// ra...”

https://infosec.exchange/@offseq/116283685757971538

🤖 via RSS feed. Not an endorsement.

#Trivy vulnerability scanner breach pushed #infostealer via #GitHub Actions

https://www.bleepingcomputer.com/news/security/trivy-vulnerability-scanner-breach-pushed-infostealer-via-github-actions/

#cybersecurity #malware

#Microsoft #Azure Monitor alerts abused for callback #phishing attacks

https://www.bleepingcomputer.com/news/security/microsoft-azure-monitor-alerts-abused-in-callback-phishing-campaigns/

#cybersecurity

NicFab Newsletter #13 — March 24, 2026
This week: Rome Court annuls €15M OpenAI fine · EDPB CEF 2026 on transparency (25 DPAs) · Chat Control — no deal between Parliament and Council · EDPB-EDPS Joint Opinion on Cybersecurity Act 2 & NIS2 · AI Act delay approved · EU sanctions Chinese & Iranian entities for cyberattacks
🎙️ NEW: Podcast — Legal Prompting, Episode #1
🔖 AI Act in a Nutshell – Part 13: Article 17
📖 https://www.nicfab.eu/en/newsletter-issues/2026-03-24-issue-13/
#Privacy #GDPR #AIAct #Cybersecurity #LegalPrompting #AI

Daily Digest | 24 March 2026

Your daily dose of Privacy, Data Protection, AI & Cybersecurity news.

5 stories you should not miss.

Read more: https://www.nicfab.eu/daily-digest/

#Privacy #AI #GDPR #Cybersecurity #TechLaw

🛡️ #Cybersecurity news & tips across the #fediverse 👇

“🟠 CVE-2026-4639 - High (8.8) Vitals ESP developed by Galaxy Software Services has a Incorrect Authorization vulnerability, allowing authenticated remote attackers to perform certain administrative functions, thereby es...”

https://mastodon.social/@thehackerwire/116282484405537793

🤖 via RSS feed. Not an endorsement.

🛡️ #Cybersecurity news & tips across the #fediverse 👇

“🦅 The US government just banned consumer routers made outside the US ｢ It is not clear how simply moving production of routers domestically would make them safer. In the Volt Typhoon hack, Chinese state-sponsored hacke...”

https://indieweb.social/@jbz/116281532816260985

🤖 via RSS feed. Not an endorsement.

🛡️ #Cybersecurity news & tips across the #fediverse 👇

“🟠 CVE-2026-33143 - High (7.5) OneUptime is a solution for monitoring and managing online services. Prior to version 10.0.34, the WhatsApp POST webhook handler (/notification/whatsapp/webhook) processes incoming status ...”

https://mastodon.social/@thehackerwire/116280734653900107

🤖 via RSS feed. Not an endorsement.

systemd adds an optional “birthDate” field to user records, letting Linux apps access sensitive age data for compliance 📄
Critics warn this creates privacy risks, centralizes sensitive user info, and could be misused if poorly secured, making Linux systems a potential target for data leaks 🔐

🔗 https://itsfoss.com/news/systemd-age-verification/

#TechNews #Linux #Systemd #Privacy #OpenSource #Security #Data #DigitalRights #Compliance #Tech #Software #Freedom #Cybersecurity #Policy #DataProtection #AgeVerification

FBI director Kash Patel confirmed the agency buys commercially available location data to track Americans, bypassing warrants and raising constitutional privacy concerns 📍

🔗 https://techcrunch.com/2026/03/18/fbi-is-buying-location-data-to-track-us-citizens-kash-patel-wyden/

#TechNews #Privacy #Surveillance #Cybersecurity #Data #Security #DigitalRights #Freedom #Law #Government #BigData #Tech #Policy #Rights #DataProtection

🛡️ #Cybersecurity news & tips across the #fediverse 👇

“Possible Phishing 🎣
on: ⚠️hxxps[:]//www[.]robiox[.]com[.]py/users/493233288195/profile
🧬 Analysis at: https://urldna.io/scan/69c171c73b77500009ac14be
#cybersecurity #phishing #infosec #urldna #scam #infosec”

https://infosec.exchange/@urldna/116279791129107609

🤖 via RSS feed. Not an endorsement.

Cryptography on the web: the illusion of safety

https://negativepid.blog/cryptography-on-the-web-the-illusion-of-safety/

#cryptography #encryption #tech #Cybersecurity #cyberattacks #cyberThreats #onlineSecurity #negativepid

Widely used #Trivy scanner compromised in ongoing supply-chain attack

https://arstechnica.com/security/2026/03/widely-used-trivy-scanner-compromised-in-ongoing-supply-chain-attack/

#cybersecurity

#FBI links #Signal #phishing attacks to Russian intelligence services

https://www.bleepingcomputer.com/news/security/fbi-links-signal-phishing-attacks-to-russian-intelligence-services/

#cybersecurity #Russia

#Oracle pushes emergency fix for critical #IdentityManager RCE flaw

https://www.bleepingcomputer.com/news/security/oracle-pushes-emergency-fix-for-critical-identity-manager-rce-flaw/

#cybersecurity

The age of quantum computing has brought significant changes to how encryption and legal frameworks are approached. Experts like Nick Sullivan highlight the importance of adapting to new challenges. In complex divorce cases, digital concealment tactics pose a major threat. Discover how Google, IBM, and industry leaders are rethinking encryption strategies to stay ahead of emerging threats.

Read more: https://steelefortress.com/fortress-feed/how-google-ibm-and-experts-like-nick-sullivan-are-rethinking-encryption-and-legal-frameworks-in-the-age-of-quantum-computing

#CyberSecurity #Privacy #InfoSec #Security #DataProtection #Tech #Technology

🎥 Watch Teaser: https://steelefortress.com/jjhkxv

Daily Digest | 23 March 2026

Your daily dose of Privacy, Data Protection, AI & Cybersecurity news.

5 stories you should not miss.

Read more: https://www.nicfab.eu/daily-digest/

#Privacy #AI #GDPR #Cybersecurity #TechLaw

A Copy-Paste Bug That Broke PSpice AES-256 Encryption

https://jtsylve.blog/post/2026/03/18/PSpice-Encryption-Weakness

#HackerNews #CopyPasteBug #PSpice #AES256 #EncryptionWeakness #Cybersecurity #SoftwareFlaw #TechNews

How an Umbrella Pattern Can Ground an AI Drone

#DroneNews #Cybersecurity #AI #TechSecurity #AusNews #AIGenerated

https://thedailyperspective.org/article/2026-03-22-how-an-umbrella-pattern-can-ground-an-ai-drone-7ffe90d6

Public-key cryptography

https://negativepid.blog/public-key-cryptography/

#cryptography #PKC #Internet #secrets #tech #IT #science #STEM #computing #AI #quantumComputing #innovation #Cybersecurity #onlineSecurity #negativepid

New Episode:
Papers, Please 💳🛑

Are you being forced to "show your papers" just to look through a digital fence?
In Episode 18, I'm diving into the 2026 age verification gold rush and how it’s being used as a backdoor for global identity tracking.

In this episode:

🛡️ The Identity Buffet
🛡️ The Middleman Problem
🛡️ Technical Self-Defense

Listen now and join the resistance: ImpracticalPrivacy.com

#Privacy #CyberSecurity #DigitalRights #DataPrivacy #FOSS #PrivacyMatters

Alt...

A cybernetic-style digital illustration for a podcast titled "Impractical Privacy: Episode 18 - Papers, Please." The image features a central "Age-Gate Checkpoint" machine being operated by a robotic hand. The machine includes a slot for "Government ID," a screen displaying a human face alongside "biometric hash" and "age estimation" readouts, and an output for "credit card vouching" with a virtual card. In the background, large watchful eyes look over a glowing "Global Identity Network". Floating UI elements highlight privacy concepts from the episode, such as "Zero-Knowledge Proofs," "Graphene Profile Sandbox," "Scrambled EXIF," and "Browser Fingerprint". The overall aesthetic is a neon-lit, dystopian tech environment with a "Sudo" signature in the corner.

US accuses #Iran’s government of operating hacktivist group that hacked #Stryker

https://techcrunch.com/2026/03/20/u-s-accuses-irans-government-of-operating-hacktivist-group-that-hacked-stryker/

#cybersecurity #Handala #politics

#Cyberattack on vehicle #breathalyzer company leaves drivers stranded across the US

https://techcrunch.com/2026/03/20/cyberattack-on-vehicle-breathalyzer-company-leaves-drivers-stranded-across-the-us/

#cybersecurity #Intoxalock

#CISA orders feds to patch max-severity #Cisco flaw by Sunday

https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-max-severity-cisco-flaw-by-sunday/

#cybersecurity

The Danger Behind #Meta Killing End-to-End Encryption for #Instagram DMs

https://www.wired.com/story/the-danger-behind-metas-decision-to-kill-end-to-end-encrypted-instagram-dms/

#cybersecurity

Ex-data analyst stole company data in $2.5M extortion scheme

https://www.bleepingcomputer.com/news/security/data-analyst-found-guilty-of-extorting-brightly-software-of-25-million/

#Brightly #cybersecurity #SchoolDude #privacy #DataBreach

A cyberattack on Intoxalock, a U.S. vehicle breathalyzer company, has left drivers across the country stranded and unable to start their cars. The company’s devices fit into ignition switches and are used by people who are required to show a negative breath sample to start their cars. Read more from @Techcrunch:

https://flip.it/gL8zkL

#Tech #CyberSecurity #Cars #Transportation #Technology

US Takes Down Botnets Used in Record-Breaking Cyberattacks

https://www.wired.com/story/us-takes-down-botnets-used-in-record-breaking-cyberattacks/

#botnet #cybersecurity #Aisuru #Kimwolf #JackSkid #Mossad

A rogue #AI led to a serious security incident at #Meta

https://www.theverge.com/ai-artificial-intelligence/897528/meta-rogue-ai-agent-security-incident

#cybersecurity #privacy

#Navia discloses #DataBreach impacting 2.7 million people

https://www.bleepingcomputer.com/news/security/navia-discloses-data-breach-impacting-27-million-people/

#cybersecurity #privacy #healthcare

New ‘#PolyShell’ flaw allows unauthenticated RCE on #Magento e-stores

https://www.bleepingcomputer.com/news/security/new-polyshell-flaw-allows-unauthenticated-rce-on-magento-e-stores/

#cybersecurity

#Google details new 24-hour process to #sideload unverified #Android apps

https://arstechnica.com/gadgets/2026/03/google-details-new-24-hour-process-to-sideload-unverified-android-apps/

#KeepAndroidOpen #privacy #cybersecurity

#Bitrefill blames North Korean #Lazarus group for cyberattack

https://www.bleepingcomputer.com/news/security/bitrefill-blames-north-korean-lazarus-group-for-cyberattack/

#NorthKorea #cybersecurity

#FBI seizes #Handala data leak site after #Stryker #cyberattack

https://www.bleepingcomputer.com/news/security/fbi-seizes-handala-data-leak-site-after-stryker-cyberattack/

#Iran #politics #cybersecurity

Daily Digest | 20 March 2026

Your daily dose of Privacy, Data Protection, AI & Cybersecurity news.

5 stories you should not miss.

Read more: https://www.nicfab.eu/daily-digest/

#Privacy #AI #GDPR #Cybersecurity #TechLaw