March 2026

Researchers have identified multiple state-level attacks using DarkSword, a chain of vulnerabilities, to infect unpatched iPhones.

Tax season is also peak season for identity theft. Malwarebytes researchers spotted criminals trading stolen tax records on dark web forums.

Researchers found a way to trick AI assistants into missing dangerous user instructions on a website.

Apple has released a Background Security Improvement that silently fixes a WebKit vulnerability (CVE-2026-20643).

A sprawling network of fake shops, all built for one purpose: to steal your payment details and personal data.

The phishing site it is not affiliated with Igloo Inc or Pudgy Penguins, but is designed to lure fans and steal their crypto passwords.

AI may be everywhere, but according to our privacy survey, 90% say they don’t trust it with their data, and many are pulling back.

What looks like a legit VPN download could be a trap, as SEO poisoning is being used to steal corporate logins.

Malware has been abusing Android’s accessibility features for years. Google just made that a lot harder.

We found fake “verify you are human” pages on hacked WordPress sites that trick Windows users into installing the Vidar infostealer.