The Hacker News

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

DNS flaw in Amazon Bedrock and critical AI vulnerabilities expose data and enable RCE, risking breaches and infrastructure ...

For March, Patch Tuesday delivers fixes for 83 vulnerabilities

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log ...
Hackaday

This Week In Security: Plenty Of Patches, Replacing Old Gear, And Phrack Calls For Papers

When Friday the Thirteenth and Patch Tuesday happen on the same week, we’re surely in for a good time. Anyone who maintains any sort of Microsoft ecosystem knows by now to brace for impact ...

Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk

A security flaw in the Ally WordPress plugin used on more than 400,000 sites could allow attackers to extract sensitive data ...

Another worrying WordPress plugin security flaw could put 250,000 websites at risk

Vulnerability left ~246,600 sites exposed to data theft Fixed in version 4.1.0; WordPress urges immediate updates A popular ...
NewsBytes

Critical vulnerabilities found in Microsoft's March 2026 update

India's Computer Emergency Response Team (CERT-In) has warned of high-severity vulnerabilities in multiple Microsoft products, urging immediate system patching.

Government issues high alert for Microsoft Windows, Office and Azure users: Patch your ...

India's Computer Emergency Response Team (CERT-In) has issued a critical advisory concerning multiple high-severity ...

Patch Alert: Microsoft Fixes Nearly 80 Bugs, Including Critical Office Flaws

Microsoft’s March Patch Tuesday fixes 78 vulnerabilities, including Office preview pane flaws, an Excel Copilot data leak ...
TechBooky

Microsoft Fixes 77 Vulnerabilities in March Patch Tuesday

Microsoft has released its March 2026 Patch Tuesday security updates, fixing at least 77 vulnerabilities across Windows operating systems and ...
GovInfoSecurity

Breach Roundup: Russian State Actors Target Signal, WhatsApp

This week, Russian hackers targeted Signal and WhatsApp users, permit-fee phishing hit U.S. applicants, ClickFix on WordPress sites, Microsoft patched 80 bugs, a ...