Tag: chrome-vulnerability

Critical VMware RCE Exploited, Major Breaches Hit LexisNexis and AkzoNobel

CISA confirmed active exploitation of a VMware Aria Operations RCE vulnerability, adding it to the KEV catalog. Major data breaches impacted LexisNexis and AkzoNobel, while threat actors continue leveraging OAuth flows and compromised infrastructure for attacks.

Mar 4, 2026BleepingComputer, Graham Cluley, Checkpoint Research, Malwarebytes Labs, SecureList (Kaspersky)

vmwarecisa-kevdata-breach

🏴Play

🇺🇸LexisNexis🇺🇸Meta Platforms🇺🇸Google

highNation-State & APT

APT Roundup: Zero-Day Exploitation, Iranian Cyber Escalation, and AI-Targeted Attacks

APT28 exploited an MSHTML zero-day while APT37 developed new air-gapped infiltration techniques using cloud storage and USB implants. Meanwhile, Iranian cyber threats are escalating amid Middle East tensions, prompting warnings from UK and US authorities.

Mar 3, 2026Security Affairs, The Record, Palo Alto Unit 42

apt28apt37iran-cyber-threats

🇷🇺APT28🇰🇵APT37

🇺🇸Google

highVulnerabilities & Exploits

Chrome Privilege Escalation Patched, SD-WAN Zero-Days, and UK Cyber Essentials Evolution

Google patched a critical Chrome vulnerability allowing malicious extensions to escalate privileges via Gemini panel exploitation. Meanwhile, SD-WAN zero-day vulnerabilities have emerged alongside evolving bot attack patterns and updated UK compliance requirements.

Mar 2, 2026The Hacker News, Qualys

chrome-vulnerabilityprivilege-escalationsd-wan

🇺🇸Google