infosecintel – Curated Information Security Articles and Threat Intelligence News

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

March 2, 2026

Cybersecurity researchers have disclosed details of a now-patched security flaw in Google Chrome that could have permitted attackers to escalate privileges and gain access to local files on the system. The vulnerability, tracked as CVE-2026-0628 (CVSS score: 8.8), has been described as a case of insufficient policy enforcement in theRead More »New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome

March 2, 2026

Google has announced a new program in its Chrome browser to ensure that HTTPS certificates are secure against the future risk posed by quantum computers. “To ensure the scalability and efficiency of the ecosystem, Chrome has no immediate plan to add traditional X.509 certificates containing post-quantum cryptography to the ChromeRead More »Google Develops Merkle Tree Certificates to Enable Quantum-Resistant HTTPS in Chrome

Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant

March 2, 2026

Malicious extensions could hijack the Gemini Live in Chrome feature to spy on users and steal their files. The post Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant appeared first on SecurityWeek.

OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

March 2, 2026

Malicious websites could open a WebSocket connection to localhost on the OpenClaw gateway port, brute force passwords, and take control of the agent. The post OpenClaw Vulnerability Allowed Websites to Hijack AI Agents appeared first on SecurityWeek.

Iranian Apps, Websites Hacked Following US-Israeli Strikes

March 2, 2026

A wave of cyber operations targeted Iran.

Madison Square Garden Data Breach Confirmed Months After Hacker Attack

March 2, 2026

The company is one of the many victims of the 2025 Oracle E-Business Suite (EBS) hacking campaign. The post Madison Square Garden Data Breach Confirmed Months After Hacker Attack appeared first on SecurityWeek.

⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More

March 2, 2026

This week is not about one big event. It shows where things are moving. Network systems, cloud setups, AI tools, and common apps are all being pushed in different ways. Small gaps in access control, exposed keys, and normal features are being used as entry points. The pattern becomes clearRead More »⚡ Weekly Recap: SD-WAN 0-Day, Critical CVEs, Telegram Probe, Smart TV Proxy SDK and More

Nick Andersen Appointed Acting Director of CISA

March 2, 2026

Madhu Gottumukkala has been assigned to a new role within the Department of Homeland Security. The post Nick Andersen Appointed Acting Director of CISA appeared first on SecurityWeek.

AWS Expands Security Hub Into a Cross-Domain Security Platform

March 2, 2026

The AWS Security Hub Extended plan aims to reduce security tool sprawl by correlating findings across multiple security domains. The post AWS Expands Security Hub Into a Cross-Domain Security Platform appeared first on SecurityWeek.

LLM-Assisted Deanonymization

March 2, 2026

Turns out that LLMs are good at de-anonymization: We show that LLM agents can figure out who you are from your anonymous online posts. Across Hacker News, Reddit, LinkedIn, and anonymized interview transcripts, our method identifies users with high precision and scales to tens of thousands of candidates. WhileRead More »LLM-Assisted Deanonymization