The UK government has sanctioned Chinese-based company Xinbi, described as one of the largest illicit online cryptocurrency marketplaces as well a associated entities and individuals accused of links with scam compounds in Southeast Asia.

https://www.infosecurity-magazine.com/news/uk-sanction-chinese-crypto/

𝐍𝐄𝐖 - Vibe coding tools are flooding software with new vulnerabilities, @georgiatech researchers have warned.

I spoke to Hanqing Zhao, founder of the Vibe Security Radar, about the future of AI coding tool-induced vulnerabilities.

https://www.infosecurity-magazine.com/news/ai-generated-code-vulnerabilities/

𝐍𝐄𝐖 - @openai has launched a new Safety Bug Bounty program to encourage disclosures of issues in its products that pose “meaningful abuse and safety risks, even if they don’t meet the criteria for a security vulnerability.” @Bugcrowd

https://www.infosecurity-magazine.com/news/openai-bug-bounty-ai-abuse-safety/

The US Federal Communications Commission bans foreign-made internet routers over national security concerns.

The ban means that all such routers made in foreign countries – not just a few select Chinese vendors – are now placed on the FCC’s covered list.

https://www.infosecurity-magazine.com/news/us-fcc-bans-foreign-made-routers/

At @rsaconference, the head of the @ncsc urged the cybersecurity industry to develop vibe coding safeguards.

https://www.infosecurity-magazine.com/news/rsac-uk-ncsc-urges-vibe-coding/

VulnWatch Monday: CVE-2026-22172 🔓

🦞 Yekai Chen (aka LUOYEcode) has detected a critical vulnerability affecting OpenClaw versions prior to 2026.3.12.

🔧 Fix in OpenClaw 2026.3.12.

🔎 GitHub advisory: https://github.com/openclaw/openclaw/security/advisories/GHSA-rqpp-rjj8-7wv8
🐞 VulnCheck advisory: https://www.vulncheck.com/advisories/openclaw-scope-elevation-in-websocket-shared-auth-connections
💾 View JSON: https://cveawg.mitre.org/api/cve/CVE-2026-22172

VulnWatch Monday: CVE-2026-3611 🔓

Gjoko Krstic, from Zero Science Lab reported a maximum-severity vulnerability in Honeywell's IQ4x building management controller.

The flaw was publicly disclosed by ICS Cert and is tracked as CVE-2026-3611.

🔎 With no user module configured, security is disabled by design and the system operates under a System Guest (level 100) context, granting read/write privileges to any party able to reach the HTTP interface.

⚙️ Authentication controls are only enforced after a web user is created via U.htm, which dynamically enables the user module. Because this function is accessible prior to authentication, a remote user can create a new account with administrative read/write permissions enabling the user module and imposing authentication under attacker-controlled credentials. This action can effectively lock legitimate operators out of local and web-based configuration and administration.

🔧 According to CISA, Honeywell is aware of the issue, but has not released a fix. For more information, users are urged to contact Honeywell directly.

⚠️ CISA advisory: https://www.cisa.gov/news-events/ics-advisories/icsa-26-069-03
💾 View CSAF: https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-069-03.json

𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝐙𝐞𝐫𝐨-𝐂𝐥𝐢𝐜𝐤 𝐅𝐥𝐚𝐰 𝐢𝐧 𝐧𝟖𝐧 𝐀𝐥𝐥𝐨𝐰𝐬 𝐅𝐮𝐥𝐥 𝐒𝐞𝐫𝐯𝐞𝐫 𝐂𝐨𝐦𝐩𝐫𝐨𝐦𝐢𝐬𝐞

Researchers from Pillar Security have found two new critical vulnerabilities in self-hosted and cloud n8n deployments.

n8n is a popular open-source workflow automation platform powering hundreds of thousands of enterprise AI systems worldwide.

One of the flaws, tracked as CVE-2026-27493, can lead to full takeover of a server without the target clicking on anything and without the attacker needing to be authenticated.

🔧Fix? n8n cloud users should have already benefitted from automated fixes.

People self-hosting n8n instances are urged to update to versions 2.10.1, 2.9.3 or 1.123.22 of n8n, depending on their release channel.

Pillar Security also recommended users to rotate all stored credentials if a vulnerable workflow is found in their n8n environment.

https://www.infosecurity-magazine.com/news/critical-zeroclick-flaw-n8n-pillar/

𝐖𝐡𝐚𝐭 𝐂𝐈𝐒𝐎𝐬 𝐒𝐡𝐨𝐮𝐥𝐝 𝐊𝐧𝐨𝐰 (𝐀𝐧𝐝 𝐃𝐨) 𝐀𝐛𝐨𝐮𝐭 𝐎𝐩𝐞𝐧𝐂𝐥𝐚𝐰

OpenClaw has exploded onto the scene and govts are already slamming on the brakes. I spoke to experts to explore what CISOs should do to contain its vulnerabilities.

https://www.infosecurity-magazine.com/news-features/what-cisos-should-know-and-do/