Show Notes - 2026-03-29
Stories Covered
- Today:
- Citrix NetScaler CVE-2026-3055 (CVSS 9.3) Under Active Reconnaissance [Critical Alerts]
- TeamPCP Supply Chain Campaign Pauses After 48 Hours Without New Compromise [Critical Alerts]
- Iran-Linked Handala Breaches FBI Director Email, Wipes Stryker in First Fortune 500 Destructive Attack [Critical Alerts]
- Woodfords Family Services Notifying Patients of 2024 Ransomware Attack [Ransomware & Extortion]
- Infinite Campus Data Breach Exposed Limited Non-Directory Student Information [Ransomware & Extortion]
- Corewell Health Vendor Breach Affects 19,000 Patients [Ransomware & Extortion]
- New Infinity Stealer Targets macOS via ClickFix Technique [Business & Infrastructure Threats]
- Anthropic Claude Mythos Model Leaked via Public Data Lake [General Security News]
- CVE-2026-32241 - Flannel Remote Code Execution via BackendData Injection [Vulnerability Disclosures]
- CVE-2026-3104 - BIND Memory Leak in DNSSEC Proof Preparation [Vulnerability Disclosures]
- CVE-2026-3591 - BIND Stack Use-After-Return in SIG(0) Handling [Vulnerability Disclosures]
- CVE-2026-33636 - LIBPNG Out-of-Bounds Read on AArch64 [Vulnerability Disclosures]
- CVE-2026-23399 - nf_tables Memory Leak in Error Path [Vulnerability Disclosures]
- CVE-2025-67030 - Microsoft Security Update [Vulnerability Disclosures]
- CVE-2026-1519 - BIND NSEC3 CPU Load DoS [Vulnerability Disclosures]
- CVE-2026-33936 - python-ecdsa Denial of Service [Vulnerability Disclosures]
- CVE-2026-3119 - BIND TKEY Record DoS [Vulnerability Disclosures]
- CVE-2026-33416 - LIBPNG Use-After-Free [Vulnerability Disclosures]
- CVE-2026-25645 - Python Requests Insecure Temp File Reuse [Vulnerability Disclosures]
- CVE-2026-33671 - Picomatch ReDoS via Extglob Quantifiers [Vulnerability Disclosures]
- CVE-2026-33672 - Picomatch Method Injection in POSIX Character Classes [Vulnerability Disclosures]
- CVE-2026-4833 - Orc Discount Markdown Recursion Vulnerability [Vulnerability Disclosures]
CVEs Referenced
CVE-2023-4966, CVE-2025-5777, CVE-2025-6543, CVE-2025-67030, CVE-2025-7775, CVE-2026-1519, CVE-2026-23399, CVE-2026-25645, CVE-2026-3055, CVE-2026-3104, CVE-2026-3119, CVE-2026-32241, CVE-2026-33416, CVE-2026-33634, CVE-2026-33636, CVE-2026-33671, CVE-2026-33672, CVE-2026-33936, CVE-2026-3591, CVE-2026-4833
Indicators of Compromise
Domains:
update-check[.]com, update-check[.]com.
Fler avsnitt av Cyber Threat Brief
Visa alla avsnitt av Cyber Threat BriefCyber Threat Brief med Carolina Clear Tech, LLC finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.
