%term

The Silent Vulnerability: Why Non-Human Identities Are Now Prime for Exploitation

Mar 4, 2026 By Bharath Rangamannar, SVP Engineering In Reach Security

The explosive growth of nonhuman identities (NHIs) has quietly become one of the most pressing cybersecurity challenges of the modern enterprise. Machine identities, API keys, service accounts, OAuth tokens, digital certificates, and other automated credentials now outnumber human identities by ever-growing ratios, sometimes by as much as 50 to one. However, despite their ubiquity and critical operational role, NHIs rarely receive the same level of governance or scrutiny as human-centered identities. Visibility is fragmented, controls are inconsistent, and access is often far broader than it needs to be.

Read Post

Reach Security

Read more about The Silent Vulnerability: Why Non-Human Identities Are Now Prime for Exploitation

Why AI Features Don't Equal Better Vulnerability Management

Mar 4, 2026 By Nucleus Security In Nucleus

AI is becoming table stakes in vulnerability and exposure management. In this candid webinar conversation, Chris Ray, Field CTO at GigaOm, and Will Gorman, CTO and leader of AI initiatives at Nucleus Security, challenge the assumption that more AI automatically leads to better outcomes.

View Video

Nucleus

Read more about Why AI Features Don't Equal Better Vulnerability Management

Cato CTRL Threat Research: New MongoDB Vulnerability Allows Instant Remote Server Takedown (CVE-2026-25611)

Mar 4, 2026 By Vitaly Simonovich In Cato Networks

Cato CTRL’s Vitaly Simonovich (senior security researcher) has discovered a new vulnerability (CVE-2026-25611 with a “High” severity rating of 7.5 out of 10) in all MongoDB versions with compression enabled (version 3.4+, enabled by default since version 3.6), including MongoDB Atlas. The vulnerability can enable a threat actor to crash any MongoDB server. MongoDB Atlas clusters are not internet-reachable by default.

Read Post

Cato Networks

Read more about Cato CTRL Threat Research: New MongoDB Vulnerability Allows Instant Remote Server Takedown (CVE-2026-25611)

The 89% Problem: How LLMs Are Resurrecting the "Dormant Majority" of Open Source

Mar 4, 2026 By Noa Yaffe-Ermoza In Snyk

AI coding assistants are quietly resurrecting millions of abandoned open source packages. For the last decade, developers relied on a simple heuristic for open source security: Prevalence \= Trust. If a package was downloaded millions of times a week (lodash, react, requests), we assumed it was "safe enough" because thousands of eyes were on it. If it was obscure, we approached with caution.

Read Post

Snyk

Read more about The 89% Problem: How LLMs Are Resurrecting the "Dormant Majority" of Open Source

Survey Finds 45% of Cybersecurity Leaders Work a "Sixth Day" as AI Redefines Their Role

Mar 3, 2026 By Seemplicity In Seemplicity

Workforce report reveals AI is expanding responsibilities, increasing burnout, and shifting cyber leadership requirements.

Read Post

Seemplicity

Read more about Survey Finds 45% of Cybersecurity Leaders Work a "Sixth Day" as AI Redefines Their Role

Cisco's SD-WAN 0-Day

Mar 3, 2026 By WatchGuard Technologies In WatchGuard

This week, Marc and Corey break down a recently disclosed and patched 0-Day vulnerability in Cisco’s Catalyst SD-WAN Controller that was actively exploited for three years.

View Video

WatchGuard

Read more about Cisco's SD-WAN 0-Day

Prioritizing Vulnerabilities Beyond Internet Exposure

Mar 3, 2026 By Nucleus Security In Nucleus

Nucleus R&D Engineer Ryan Cribelar assesses where internet exposure ranks amongst all of the factors involved when prioritizing vulnerabilities.

View Video

Nucleus

Read more about Prioritizing Vulnerabilities Beyond Internet Exposure

CVE-2026-21513: APT28 Exploits MSHTML Zero-Day in Targeted Attacks

Mar 3, 2026 By foresiet In Foresiet

A Russia-linked threat actor widely tracked as APT28 leveraged a zero-day vulnerability in Microsoft’s MSHTML engine, tracked as CVE-2026-21513, in targeted operations before a security patch was made available. The vulnerability enabled remote code execution through crafted content rendered by the Windows MSHTML component, which remains embedded across supported Windows systems. The exploitation occurred in targeted spear-phishing campaigns aimed at diplomatic and defense-aligned organizations.

Read Post

Foresiet

Read more about CVE-2026-21513: APT28 Exploits MSHTML Zero-Day in Targeted Attacks

Persistent XSS/RCE using WebSockets in Storybook's dev server

Mar 3, 2026 By Robbe Verwilghen In Aikido

Aikido Attack, our AI pentest product, found a WebSocket hijacking vulnerability in Storybook's dev server that can lead to persistent XSS, remote code execution, and, in the worst case, supply chain compromise. Storybook's WebSocket server has no authentication or access control, so if the dev server is publicly accessible, an attacker can exploit this without any user interaction at all. In the more common local setup, a developer just has to visit the wrong website while Storybook is running.

Read Post

Aikido

Read more about Persistent XSS/RCE using WebSockets in Storybook's dev server

Stove Off, Windows Closed: What CMDB Accuracy Has to Do with Home Security

Mar 2, 2026 By Daniel Imber In Outpost 24

Have you ever left your home without checking if all the windows were closed? And have you ever sat in the office wondering whether you turned off the stove? When it comes to our own homes, most of us care a lot about safety. But what about corporate IT? Have you turned off the virtual stove and secured all doors and windows against unauthorized access? Do you even know how many doors and windows exist in your IT environment?

Read Post