Infosec bits for 2026 week 12

Anele Siwela | March 20, 2026, 3:53 p.m.

Cybersecurity News:

The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks [The Hacker News, The Hacker News]

CISA urges organizations to harden endpoint security following Stryker attack [David Jones, Cybersecurity dive]

Popular Chrome extension disabled for containing malware [Matt Binder, Mashable]

Vulnerabilities & Patches:

Google Chrome Update Fixes 26 Security Flaws, Including RCE Vulnerabilities [AnuPriya, Cyberpress]

RansomwareCisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks [Eduard Kovacs, Security Week]

Microsoft Releases Out-of-Band Patch For Critical RRAS RCE Vulnerabilities in Windows 11 [Guru Baran, Cybersecurity news]

Critical Ubiquiti UniFi UniFi security flaw allows potential account hijacking [Pierluigi Paganini, Security affairs]

CISA Warns of Cisco Firewall 0-Day Exploited in Ransomware Attacks [AnuPriya, Cyberpress]

Ubuntu Desktop Systems Vulnerability Enables Attackers to Gain Full Root Access] [Guru Baran, Cybersecurity News]

Malware and Threats:

Researchers uncover iPhone spyware capable of penetrating millions of devices [A.J. Vicens, Reuters]

Stryker attack wiped tens of thousands of devices, no malware needed [Lonut Ilascu, Bleeping Computer]

Glassworm Is Back: A New Wave of Invisible Unicode Attacks Hits Hundreds of Repositories [Ilyas Makari, aikido]

Attacks and Breaches:

Targeted Phishing Attack Breaches Biotech Company Data [Security Staff, Security magazine]

Data breaches in South Africa occur every three hours, with 90% deemed preventable [Ashley Lechman, iol]