%term

Unpacking Augmented Marauder's Multi-Pronged Casbaneiro Campaigns

Mar 31, 2026 By Thomas Elkins and Joshua Green In BlueVoyant

BlueVoyant researchers have uncovered a broad, multi-pronged phishing campaign targeting Spanish-speaking users in organizations across Latin America and now Europe as well. While recent industry intelligence heavily documented attacks utilizing WhatsApp to deliver banking trojans under the umbrella of the Brazil-based eCrime group Augmented Marauder (a.k.a.

Read Post

BlueVoyant

Read more about Unpacking Augmented Marauder's Multi-Pronged Casbaneiro Campaigns

AI Integration Security: Why the Biggest Risk Is Not the Model

Mar 31, 2026 By Emma Stevens In BitSight

When people talk about AI security risks, the conversation usually starts with the model. Can it be jailbroken? Can someone get around the guardrails? Can an attacker make it say or do something it should not? Those are fair questions, but they are not the most important ones. The bigger risk is not the model on its own: it’s everything the model is connected to.

Read Post

BitSight

Read more about AI Integration Security: Why the Biggest Risk Is Not the Model

Awards Don't Defend Networks. Execution Does.

Mar 31, 2026 By Securonix In Securonix

By: Simon Hunt, Chief Product Officer, Securonix Being named to CRN’s 2026 Security 100 list for the fourth consecutive year is something we’re proud of. It reflects the strength of our partners and the work our teams are doing every day. But recognition doesn’t stop a breach. It doesn’t reduce investigation time. It doesn’t help an analyst close a case faster at 2:00 a.m.

Read Post

Securonix

Read more about Awards Don't Defend Networks. Execution Does.

Busting the Biggest Myth in Retail Cybersecurity | Nishith Datta | Titan

Mar 31, 2026 By Indusface In Indusface

In this Episode of Guardians of the Enterprise, Ashish Tandon, Founder & CEO, Indusface, and Nishith Datta, Head of Cybersecurity at Titan, breaks down one of the biggest myths in retail cybersecurity, especially in the era of omnichannel distribution channels. As digital and physical experiences evolve, securing consumer journeys is no longer straightforward. Nishith shares his frontline perspective on why traditional assumptions around retail security fall short, and what organizations must rethink to stay resilient.

View Video

Indusface

Read more about Busting the Biggest Myth in Retail Cybersecurity | Nishith Datta | Titan

Securing AI Agents in SaaS Platforms with Falcon Shield

Mar 31, 2026 By CrowdStrike In CrowdStrike

A quick overview of how Falcon Shield secures AI Agents in SaaS platforms. Subscribe and stay updated!

View Video

CrowdStrike

AI
Security

Read more about Securing AI Agents in SaaS Platforms with Falcon Shield

Poisoned Axios: npm Account Takeover, 50 Million Downloads, and a RAT That Vanishes After Install

Mar 31, 2026 By Tom Abai In Mend

On March 30-31, 2026, threat actors published two malicious versions of the popular HTTP library axios (versions 1.14.1 and 0.30.4) to the npm registry. Both versions included a new dependency named plain-crypto-js which, in its 4.2.1 release, contained a fully-featured cross-platform dropper that silently installed a Remote Access Trojan (RAT) on developer machines.

Read Post

Mend

Read more about Poisoned Axios: npm Account Takeover, 50 Million Downloads, and a RAT That Vanishes After Install

Introducing Programmable Flow Protection: custom DDoS mitigation logic for Magic Transit customers

Mar 31, 2026 By Anita Tenjarla In Cloudflare

We're proud to introduce Programmable Flow Protection: a system designed to let Magic Transit customers implement their own custom DDoS mitigation logic and deploy it across Cloudflare’s global network. This enables precise, stateful mitigation for custom and proprietary protocols built on UDP. It is engineered to provide the highest possible level of customization and flexibility to mitigate DDoS attacks of any scale.

Read Post

Cloudflare

Read more about Introducing Programmable Flow Protection: custom DDoS mitigation logic for Magic Transit customers

CVE-2025-53521: F5 BIG-IP APM Vulnerability Reclassified as Unauthenticated RCE and Exploited in the Wild

Mar 31, 2026 By Arctic Wolf Labs In Arctic Wolf

On March 28, 2026, F5 updated its security advisory for a vulnerability impacting BIG-IP APM that was originally disclosed in October 2025 (CVE-2025-53521). The vulnerability was initially classified as a medium-severity denial-of-service (DoS) issue but has been reclassified as a critical remote code execution (RCE) vulnerability. F5 has stated CVE-2025-53521 is being exploited by unauthenticated remote threat actors to deploy web shells.

Read Post

Arctic Wolf

Read more about CVE-2025-53521: F5 BIG-IP APM Vulnerability Reclassified as Unauthenticated RCE and Exploited in the Wild

Deepfakes, Data & Delivery Apps: From 2025 Wake-Up Calls to 2026 Action Plans

Mar 31, 2026 By Astra Security In Astra

View Video

Astra

Read more about Deepfakes, Data & Delivery Apps: From 2025 Wake-Up Calls to 2026 Action Plans

Ransomware in Healthcare: It's Disruption, Distraction, and Data Theft

Mar 31, 2026 By Rubrik In Rubrik

Ransomware attacks are about disruption, distraction, and data theft happening at the same time. Nelson Carreira breaks down how modern threat actors operate. While one attack disrupts operations, another may be quietly exfiltrating sensitive data. That complexity is why healthcare organizations must prepare for recovery environments that allow clinical operations to continue safely while production systems are rebuilt.

View Video