Login Subscribe

7secure Coverage

Articles

Search and filter the broader reporting stream across incidents, AI security, policy, and operational coverage.

Zero‑day firewalls and AI model theft raise risk 🚨. IoT and OAuth abuse widen surface 🤖.

Good morning, March 2, 2026 – here’s your critical cybersecurity briefing. Today's headlines * SonicWall firewalls scanned via commercial proxies. * GoAnywhere MFT zero‑day exploited despite perimeter defenses. * Chrome extension hijack targets Gemini panel with CVE‑2026‑0628. * Anthropic AI model theft and Roundcube webmail RCE observed. * OAuth redirection

AI Security & Threats

AI‑Generated Malware Variants Flood 2026, Eroding Traditional Defenses

AI‑Generated Malware Variants Flood 2026, Eroding Traditional Defenses

CrowdStrike’s 2026 Global Threat Report shows threat actors now leveraging large language models to auto‑create thousands of code variants and hyper‑personalized phishing content in minutes. These AI‑crafted payloads mutate continuously, bypass signature databases, sandbox heuristics, and even many behavior‑based detectors, resulting in a sharp rise

Threat Intelligence

Kimwolf Botnet Moves C2 to I2P, Hiding in IoT Networks

Kimwolf Botnet Moves C2 to I2P, Hiding in IoT Networks

Security researchers have confirmed that the Kimwolf botnet, known for compromising consumer‑grade IoT devices, has migrated its command‑and‑control (C2) infrastructure onto the I2P anonymity network. By routing traffic through I2P’s encrypted tunnels, the botnet can issue instructions, download payloads, and exfiltrate data while evading traditional network‑

Data Protection & Privacy

App Exposes Nearby Smart Glasses via IR Signature Scan

App Exposes Nearby Smart Glasses via IR Signature Scan

A developer has published a mobile application that uses the device’s camera and infrared (IR) sensor to identify the distinctive IR emission patterns of popular smart‑glass models. By sweeping the surrounding area, the app can flag the presence of these wearables within a few meters, effectively revealing who

Malware & Ransomware

LummaStealer Teams Up with CastleLoader to Boost Theft and Evade Detection

LummaStealer Teams Up with CastleLoader to Boost Theft and Evade Detection

Bitdefender researchers have identified a resurgence of the LummaStealer credential‑stealer, now being delivered through the CastleLoader modular loader. The new pairing injects the stealer after CastleLoader establishes a foothold, allowing the malware to masquerade as legitimate user activity such as file browsing and software updates. This technique not only

AI Security & Threats

Claude Code Flaws Open AI Supply‑Chain to Malicious Template Injection

Claude Code Flaws Open AI Supply‑Chain to Malicious Template Injection

Researchers uncovered a set of vulnerabilities in Anthropic’s Claude Code platform that allow threat actors to embed malicious code into shared project templates. When developers pull these compromised templates into their CI/CD pipelines, the code can execute remotely, harvest Anthropic API keys, and exfiltrate data from the build

Threat Intelligence

Pro‑Russia Hacktivists Target OT with Credential‑Stuffing and Phishing

The Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory warning of an organized wave of pro‑Russia hacktivist activity aimed at U.S. and global critical infrastructure. The groups are leveraging low‑effort tactics—primarily credential‑stuffing attacks and spear‑phishing campaigns—to gain footholds in operational technology (OT)