Daily Security Briefing #184
- DjediTech
- Security , Newsletter
- March 5, 2026
Table of Contents
March 5, 2026 | Read Online
Critical vulnerabilities exposed, AI training data poisoning, and zero-day exploits…
Executive Summary
Cybersecurity threats continue to evolve with malicious actors adapting to disruptions. The recent exposure of critical vulnerabilities in MongoDB and Cisco SD-WAN products highlights the importance of timely patching and vulnerability management. Meanwhile, AI training data poisoning has become a growing concern as attackers exploit trust mechanisms to inject malicious content. Additionally, zero-day exploits remain a significant threat, with multiple campaigns disrupting global networks.
Top Articles
Look What You Made Us Patch: 2025 Zero-Days in Review Google Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities exploited in-the-wild in 2025. Although that volume of zero-days is lower than the record high observed in 2023, it is higher than 2024’s count and remained within the 60–100 range established over the previous four years. Google Cloud Blog
From Code to Runtime: The Critical Role of DAST in Application Security Dynamic application security testing (DAST) is a program staple that satisfies compliance requirements for runtime-related vulnerabilities. It catches vulnerabilities in the running web application, yielding findings that may be missed in static code testing. Rapid7 Blog
Hacked App Part of US/Israeli Propaganda Campaign Against Iran A prayer-timing app called BadeSaba Calendar was hacked to send notifications to Iranian users, part of a propaganda campaign against Iran. The messages arrived in quick succession over a period of 30 minutes. Schneier Blog
Introducing CPR Act: A Unified Approach for a Full-Lifecycle Security Check Point Services has introduced CPR Act, an expert-led unit that covers the entire security lifecycle with continuous intelligence, coordinated action, and clear outcomes. This unified approach eliminates blind spots and ensures that every phase of security feeds into the next. Checkpoint Blog
New MongoDB Vulnerability Allows Attackers to Crash Servers, Exposing Critical Data A high-severity dos vulnerability in MongoDB, tracked as CVE-2026-25611, lets unauthenticated attackers crash any exposed MongoDB server. The flaw is rooted in MongoDB’s OP_COMPRESSED wire protocol. GBHackers
PoC Exploit for Cisco SD-WAN 0-Day Vulnerability Now Released, Actively Exploited in the Wild A critical zero-day vulnerability in Cisco Catalyst SD-WAN infrastructure is currently under active exploitation by highly sophisticated threat actors. The situation has grown considerably more severe following the public release of a working Proof-of-Concept (PoC) exploit. GBHackers
2026 Browser Data Reveals Major Enterprise Security Blind Spots The browser is becoming the operating system for modern work, yet many enterprises still treat it as an extension of network or endpoint security. Keep Aware’s 2026 State of Browser Security Report shows 41% of employees used AI web tools while browser-based phishing, extensions, and social engineering drive new security blind spots. BleepingComputer
Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malware Fake OpenClaw installers hosted in GitHub repositories and promoted by Microsoft Bing’s AI-enhanced search feature instructed users to run commands that deployed information stealers and proxy malware. BleepingComputer
Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders Most organizations assume encrypted data is safe, but many attackers are already preparing for a future where today’s encryption can be broken. Instead of trying to decrypt information now, they are collecting encrypted data and storing it so it can be decrypted later using quantum computers. The Hacker News
AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.