🔵 THREAT INTELLIGENCE
LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks
Vulnerability | CRITICAL
CVEs: CVE-2026-33017
The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical vulnerability identified as...
Full analysis:
https://www.yazoul.net/news/news/langchain-langgraph-flaws-expose-files-secrets-databases-in-widely-used-ai-frame
⚡ THREAT INTELLIGENCE
PolyShell attacks target 56% of all vulnerable Magento stores
Vulnerability | MEDIUM
Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are underway, targeting more...
Full analysis:
https://www.yazoul.net/news/news/polyshell-attacks-target-56-of-all-vulnerable-magento-stores
💠 THREAT INTELLIGENCE
The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks
Vulnerability | MEDIUM
Geopolitical tensions are driving destructive cyberattacks designed to disrupt operations, not demand ransom. CISOs must limit lateral movement and...
Full analysis:
https://www.yazoul.net/news/news/the-importance-of-behavioral-analytics-in-ai-enabled-cyber-attacks
🔵 THREAT INTELLIGENCE
CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks
Vulnerability | CRITICAL
CVEs: CVE-2025-66376
A critical Microsoft SharePoint vulnerability patched in January is now being exploited in attacks, the Cybersecurity and Infrastructure Security...
Full analysis:
https://www.yazoul.net/news/news/cisa-warns-of-zimbra-sharepoint-flaw-exploits-cisco-zero-day-hit-in-ransomware-a
⚡ THREAT INTELLIGENCE
Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS
Vulnerability | MEDIUM
CVEs: CVE-2026-20643
Apple has released its first Background Security Improvements update to fix a WebKit flaw tracked as CVE-2026-20643 on iPhones, iPads, and Macs...
Full analysis:
https://www.yazoul.net/news/news/apple-fixes-webkit-vulnerability-enabling-same-origin-policy-bypass-on-ios-and-m
Outpost24 in the News:
Our Principal Threat Intel Researcher, Lydia Atienza, shared insights with Forbes on warnings about ongoing global attacks targeting Signal and WhatsApp users.
🔵 Read the article here: https://www.forbes.com/sites/daveywinder/2026/03/10/new-signal-and-whatsapp-hack-attacks-confirmed-security-agency-warns/
🟡 THREAT INTELLIGENCE
Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials
Vulnerability | MEDIUM
Microsoft is investigating a new issue affecting some Samsung laptops running Windows 11 after installing the February 2026 security updates, in...
Full analysis:
https://www.yazoul.net/news/news/storm-2561-spreads-trojan-vpn-clients-via-seo-poisoning-to-steal-credentials
⚡ THREAT INTELLIGENCE
Google Fixes Two Chrome Zero-Days Exploited in the Wild Affecting Skia and V8
Vulnerability | MEDIUM
CVEs: CVE-2026-3909
Google has released emergency security updates to patch two high-severity Chrome vulnerabilities exploited in zero-day attacks. [...]
Full analysis:
https://www.yazoul.net/news/news/google-fixes-two-chrome-zero-days-exploited-in-the-wild-affecting-skia-and-v8
🗂️ Fuite au DHS
Des données liées aux contrats ICE auraient été exposées : prestataires, informations sensibles et documents internes concernés.
--> https://www.zataz.com/le-dhs-sous-pression-apres-une-fuite-sur-ses-contrats-ice/
💠 THREAT INTELLIGENCE
Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation
Vulnerability | MEDIUM
Law enforcement agencies in the U.S. and Europe along with private partners have disrupted the SocksEscort cybercrime proxy network that used only...
Full analysis:
https://www.yazoul.net/news/news/nine-crackarmor-flaws-in-linux-apparmor-enable-root-escalation-bypass-container-
Yazoul - Cybersecurity Alerts
Outpost24
ZATAZ - "\o/"
