Cybersecurity News, Insights and Analysis

RSAC 2026 Conference Announcements Summary (Pre-Event)

A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference.

M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds

The latest M-Trends report is based on insights from over 500,000 hours of Mandiant incident response investigations in 2025.

Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware

The semiconductor company says hackers deployed file-encrypting ransomware on the network of a subsidiary in Singapore.

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack

Hackers published a malicious scanner release and replaced tags to point to information-stealer malware.

QNAP Patches Four Vulnerabilities Exploited at Pwn2Own

The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior.

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown

Attack volumes are back to pre-disruption levels, and the adversary tactics have remained unchanged.

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild.

Critical Quest KACE Vulnerability Potentially Exploited in Attacks

The vulnerability is tracked as CVE-2025-32975 and it may have been exploited in attacks against the education sector.

In Other News: New Android Safeguards, Operation Alice, UK Toughens Cyber Reporting

Other noteworthy stories that might have slipped under the radar: vulnerabilities found in KVM devices, Claudy Day Claude vulnerabilities, The Gentlemen ransomware group.

3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China

The men violated U.S. export controls laws by scheming to divert massive quantities of the high-performance servers assembled in the United States to China.

Eclypsium Raises $25 Million for Device Supply Chain Security

The company will use the investment to expand its platform’s capabilities and grow channel partnerships.

US Confirms Handala Link to Iran Government Amid Takedown of Hackers’ Sites

The US has seized several domains used by Handala in cyber-enabled psychological operations.

Cape Raises $100 Million for Protection Against Cellular Security Threats

Cape offers a privacy-focused mobile virtual network operator (MVNO) service for consumers, enterprises, and governments.

7AI has appointed Israel Barak as its first Chief Information Security Officer.

Brian Harrell has been appointed Chief Security Officer at FirstEnergy.

eSentire has named James C. Foster as Chief Executive Officer.

Green Impact Exchange has appointed John Visneski as Chief Information Security Officer.

Kai has named Alfredo Hickman as Chief Information Security Officer.

Gleb Reznik is replacing Fred Gibbins as the CISO at American Express.

More People On The Move

RSAC 2026 Conference Announcements Summary (Pre-Event)

A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference.

M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds

The latest M-Trends report is based on insights from over 500,000 hours of Mandiant incident response investigations in 2025.

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown

Attack volumes are back to pre-disruption levels, and the adversary tactics have remained unchanged.

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild.

Critical Quest KACE Vulnerability Potentially Exploited in Attacks

The vulnerability is tracked as CVE-2025-32975 and it may have been exploited in attacks against the education sector.

Navia Data Breach Impacts 2.7 Million

Between late December 2025 and mid-January 2026, hackers stole personal and health plan information from Navia’s environment.

The Human IOC: Why Security Professionals Struggle with Social Vetting

Applying SOC-level rigor to the rumors, politics, and ‘human intel’ can make or break a security team.

Joshua Goldfarb Read more

How to 10x Your Vulnerability Management Program in the Agentic Era

The evolution of vulnerability management in the agentic era is characterized by continuous telemetry, contextual prioritization and the ultimate goal of agentic remediation.

Nadir Izrael Read more

SIM Swaps Expose a Critical Flaw in Identity Security

SIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts.

Torsten George Read more

Four Risks Boards Cannot Treat as Background Noise

The goal isn’t about preventing every attack but about keeping the business running when attacks succeed.

Steve Durbin Read more

How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development

Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable.

Matias Madou Read more

More Expert Insights

Webinar: Agentic AI vs. Identity’s Last Mile Problem

April 1, 2026

Join the webinar to understand what it really takes to close the last mile of identity security.

Webinar: Why Automated Pentesting Alone Is Not Enough

April 7, 2026

Join our live diagnostic session to expose hidden coverage gaps and shift from flawed tool-level evaluations to a comprehensive, program-level validation discipline.

2026 Ransomware Resilience & Recovery Summit

SecurityWeek’s 2026 Ransomware Summit is a must-attend event for cybersecurity professionals as ransomware attacks continue to hit big-name victims across industries with ruthless efficiency.
[February 25, 2026 | Virtual]

SecurityWeek’s 2026 Supply Chain Security Summit is where top security experts unpack the complexity of modern software supply chain threats and proven strategies to mitigate risk.
[March 18, 2026 | Virtual]

SecurityWeek’s 2026 ICS Lockdown is an online extension of the ICS Cybersecurity Conference and will dive deep into the world of industrial cybersecurity to help those charged with protecting OT environments.
[April 29, 2026 | Virtual]

SecurityWeek’s 2026 Threat Detection & IR Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and more.
[May 20, 2026 | Virtual]

QNAP Patches Four Vulnerabilities Exploited at Pwn2Own

The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior. (March 23, 2026)

Read more
Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild. (March 23, 2026)

Read more
Critical Quest KACE Vulnerability Potentially Exploited in Attacks

The vulnerability is tracked as CVE-2025-32975 and it may have been exploited in attacks against the education sector. (March 21, 2026)

Read more
Critical Langflow Vulnerability Exploited Hours After Public Disclosure

Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution. (March 20, 2026)

Read more

M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds

The latest M-Trends report is based on insights from over 500,000 hours of Mandiant incident response investigations in 2025. (March 23, 2026)

Read more
In Other News: New Android Safeguards, Operation Alice, UK Toughens Cyber Reporting

Other noteworthy stories that might have slipped under the radar: vulnerabilities found in KVM devices, Claudy Day Claude vulnerabilities, The Gentlemen ransomware group. (March 20, 2026)

Read more
3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China

The men violated U.S. export controls laws by scheming to divert massive quantities of the high-performance servers assembled in the United States to China. (March 20, 2026)

Read more
Thousands of Magento Sites Hit in Ongoing Defacement Campaign

The attacks started on February 27 and have targeted e-commerce platforms, global brands, and government services. (March 20, 2026)

Read more