Latest IT News, Cybersecurity Alerts & Tech Innovations

Zombie ZIP: How Malformed Archives Let Malware Slip Past Antivirus and EDR Tools

Security researchers disclosed the Zombie ZIP technique on March 10, 2026 — a method exploiting malformed ZIP archive structures to hide malicious payloads from antivirus engines and EDR platforms, with no patch available and active use in the wild already documented via the Gootloader malware family.

Sednit APT28 Returns with Two Advanced Malware Tools Targeting European Defense & Government

Russia's APT28/Sednit group — the GRU's cyber arm active since 2004 — has been detected in March 2026 with two new sophisticated malware tools targeting government and defense organizations across Europe, marking a major tactical upgrade from years of basic implant usage.

Microsoft releases Windows 10 KB5078885 security update

Microsoft released Windows 10 KB5078885 extended security update on March 10, 2026, patching two zero-day vulnerabilities and a shutdown bug.

Microsoft Patch Tuesday March 2026: 79 Flaws Fixed Including 2 Zero-Days and Critical Office RCEs

Microsoft's March 2026 Patch Tuesday (March 10) patches 79 vulnerabilities including 2 publicly disclosed zero-days (CVE-2026-21262 SQL Server EoP), 3 Critical flaws, and two Office RCEs (CVE-2026-26110, CVE-2026-26113) exploitable via the preview pane — plus a dangerous Excel/Copilot data exfiltration flaw (CVE-2026-26144).

Microsoft makes Autopatch default for Windows security updates

Microsoft enabled Windows Autopatch by default for enterprise customers to automatically deploy security updates across managed devices.

HPE Patches Five Critical AOS-CX Flaws: RCE, Privilege Escalation and Session Hijacking

HPE released emergency patches on March 10, 2026 for five critical and high-severity vulnerabilities in Aruba Networking AOS-CX, including two command injection flaws enabling remote code execution, an SSH privilege escalation, a web session hijacking bug, and a port ACL bypass on CX 9300 switches. Immediate patching is required for all enterprise Aruba CX deployments.

FortiGate Firewalls Exploited in Network Breach Campaign

Attackers exploit FortiGate NGFW vulnerabilities and weak credentials to steal configuration files and breach corporate networks.

KadNap Malware Hijacks 14,000 Asus Routers for Botnet

New KadNap malware has infected over 14,000 Asus routers since August 2025, creating a botnet for proxying malicious traffic.

Google Photos 2026: How to Disable Ask Photos AI and Switch Back to Classic Search

On March 10, 2026, Google Photos rolled out a new toggle allowing users to disable the AI-powered Ask Photos search feature and revert to classic search. The change follows significant user backlash over Ask Photos' accuracy and speed compared to traditional search.

NVIDIA unveils RTX Dynamic MFG at GDC 2026

NVIDIA announced RTX Dynamic Multi-Frame Generation and Mega Geometry Foliage rendering at GDC 2026 on March 10.

Microsoft Entra adds passkey support for Windows sign-ins

Microsoft rolled out passkey authentication for Entra on Windows devices today, enabling phishing-resistant passwordless sign-ins through Windows Hello.

KadNap Botnet Hijacks Thousands of ASUS Routers to Build Proxy Network

A new botnet campaign tracked as KadNap is actively hijacking thousands of ASUS routers, turning compromised devices into persistent proxy nodes used to route cybercriminal traffic — with backdoor access surviving reboots and firmware updates.

Google Patches Nine Looker Studio Cross-Tenant Flaws

Tenable researchers discovered nine cross-tenant vulnerabilities in Google Looker Studio that could enable SQL injection attacks against cloud databases.

Windows 11 Forced Updates Spark User Control Concerns

Microsoft's mandatory Windows 11 updates are generating widespread user frustration over system autonomy and update timing control.

CISA adds Ivanti EPM flaw to exploited vulnerabilities list

CISA ordered federal agencies to patch a high-severity Ivanti Endpoint Manager vulnerability within three weeks after confirming active exploitation.

Microsoft to Enable Windows Hotpatch Updates by Default for All Intune Devices in May 2026

Microsoft will automatically enable hotpatch security updates by default for all eligible Intune-managed Windows devices starting May 11, 2026 — cutting patch compliance time by up to 50% and eliminating most forced reboots in enterprise environments.

Microsoft 365 E7 at $99/User/Month: Copilot AI + Agent 365 Bundled in New Enterprise Plan

Microsoft unveiled the Microsoft 365 E7 plan at $99 per user per month, bundling Copilot AI and Agent 365 autonomous agents in a single enterprise package. This is the first M365 tier to natively include AI agents alongside the full productivity suite.

APT28 Deploys Custom Covenant Framework for Espionage

Russian APT28 hackers modified the open-source Covenant tool for persistent espionage campaigns targeting government and defense sectors.

Teams Phishing Campaign Deploys A0Backdoor Malware

Hackers targeted financial and healthcare employees via Microsoft Teams to deploy A0Backdoor malware through Quick Assist remote access.

Cloud Attacks Exploit Fresh Bugs Within Days

Hackers now exploit newly disclosed third-party vulnerabilities to breach cloud environments within days instead of weeks.

Russian hackers target Signal, WhatsApp in govt phishing

Dutch intelligence warns Russian state hackers are targeting government officials through Signal and WhatsApp phishing attacks to steal sensitive communications.