WindowsTechs.com – Collaborate Disseminate

Scans for “adminer”, (Wed, Mar 18th)

Posted on March 18, 2026 by SANS Internet Storm Center, InfoCON: green

A very popular target of attackers scanning our honeypots is “phpmyadmin”. phpMyAdmin is a script first released in the late 90s, before many security concepts had&#;x26;#;xc2;&#;x26;#;xa0;been discovered. It&#;x26;#;39;s rich history of vulnerabilities made it a favorite target. Its alternative, “adminer”, began appearing about a decade later (https://www.adminer.org). One of its main “selling” points was simplicity. Adminer is just a single PHP file. It requires no configuration. Copy it to your server, and you are ready to go. “adminer” has a much better security record&#;x26;#;xc2;&#;x26;#;xa0;and claims to prioritize security in its development.

Continue reading Scans for “adminer”, (Wed, Mar 18th)→

Firefox is getting a free built-in VPN

Posted on March 18, 2026 by Sinisa Markovic

Mozilla is adding a free built-in VPN to Firefox, with the feature arriving in Firefox 149 on March 24. Privacy concerns often follow free VPN services, especially when unclear data practices put user information at risk. Mozilla says its version is gr… Continue reading Firefox is getting a free built-in VPN→

This free privacy tool makes it super easy to see which sites are selling your data

Posted on March 18, 2026 by Latest news

Data is gold, and some companies go to great lengths to collect it, save it, and sell it. But you can stop it. Here’s how. Continue reading This free privacy tool makes it super easy to see which sites are selling your data→

Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach

Posted on March 18, 2026 by Eduard Kovacs

The medtech giant has been working on restoring systems affected by the cyberattack conducted by the Handala hackers.
The post Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach appeared first on SecurityWeek.
Continue reading Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach→

Corelight’s Agentic Triage turns SOC alerts into evidence-backed investigations

Posted on March 18, 2026 by Industry News

Corelight has introduced a new set of agentic AI capabilities aimed at helping security operations centers (SOCs) cut down on repetitive, time-consuming tasks. The updates are designed to boost analyst efficiency, speed up response times, and build tru… Continue reading Corelight’s Agentic Triage turns SOC alerts into evidence-backed investigations→

TrojAI unveils new capabilities to secure agentic AI beyond the prompt layer

Posted on March 18, 2026 by Industry News

TrojAI has announced major new capabilities designed to secure the growing deployment of agentic AI in the enterprise going beyond the prompt layer. “The innovations we are unveiling this week address some of the most significant and rapid change… Continue reading TrojAI unveils new capabilities to secure agentic AI beyond the prompt layer→

Veracode Fix for SCA automates open-source vulnerability fixes

Posted on March 18, 2026 by Industry News

Veracode has unveiled Veracode Fix for Software Composition Analysis (SCA), an AI-powered solution to address software supply chain risk. The enhanced automated remediation engine, the next evolution of Veracode’s Fix solution, enables organizations to… Continue reading Veracode Fix for SCA automates open-source vulnerability fixes→

Claude Code Security and Magecart: Getting the Threat Model Right

Posted on March 18, 2026 by The Hacker News

When a Magecart payload hides inside the EXIF data of a dynamically loaded third-party favicon, no repository scanner will catch it – because the malicious code never actually touches your repo. As teams adopt Claude Code Security for static analysis, … Continue reading Claude Code Security and Magecart: Getting the Threat Model Right→

9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors

Posted on March 18, 2026 by The Hacker News

Cybersecurity researchers have warned about the risks posed by low-cost IP KVM (Keyboard, Video, Mouse over Internet Protocol) devices, which can grant attackers extensive control over compromised hosts.
The nine vulnerabilities, discovered by Eclypsiu… Continue reading 9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors→

Apple starts issuing lightweight security updates between software releases

Posted on March 18, 2026 by Sinisa Markovic

Apple is delivering small security updates, called Background Security Improvements, starting with iOS 26.1, iPadOS 26.1, and macOS 26.1. Apple describes Background Security Improvements as lightweight security releases for components such as Safari, t… Continue reading Apple starts issuing lightweight security updates between software releases→