Daily Security Briefing #193

March 14, 2026 | Read Online

Critical vulnerabilities exposed, supply-chain attacks escalate, and data breaches continue…

Executive Summary

Cybersecurity threats are escalating with malicious actors adapting to disruptions. The recent GlassWorm campaign has evolved, using transitive dependencies to sneak malicious code into developer environments. Meanwhile, critical vulnerabilities in HPE AOS-CX have been exposed, allowing admin password resets. Additionally, data breaches continue to occur, including a recent incident at Loblaw Companies Limited.

Top Articles

GlassWorm Spreads via 72 Malicious Open VSX Extensions Hidden in Transitive Dependencies The GlassWorm malware campaign has evolved, significantly escalating its attacks on software developers. Instead of embedding malware directly into initial releases, the threat actors are now using transitive dependencies to sneak malicious code into developer environments. GBHackers

Global Authorities Take Down 45,000 Malicious IPs Used in Ransomware Campaigns An unprecedented international law enforcement effort has successfully dismantled a massive cybercrime network. Coordinated by INTERPOL, the initiative targeted critical infrastructure used in phishing, malware, and ransomware campaigns worldwide. GBHackers

OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration China’s National Computer Network Emergency Response Technical Team (CNCERT) has issued a warning about the security stemming from the use of OpenClaw, an open-source and self-hosted autonomous artificial intelligence (AI) agent. The Hacker News

Malicious npm Campaign Impersonates Solara Executor to Steal Discord and Crypto Wallet Data A recent cybersecurity threat has emerged from the npm ecosystem, where attackers successfully hid a sophisticated information stealer inside seemingly harmless packages. On March 12, 2026, JFrog security researchers Guy Korolevski and Meitar Palas reported the discovery of two malicious packages designed to deliver the Cipher infostealer. CyberPress

Loblaw Data Breach: Hackers Gain Access to IT Network and Customer Data Loblaw Companies Limited, one of Canada’s largest retailers, has disclosed a data breach after detecting suspicious activity within a portion of its internal IT network. The company confirmed that a third-party threat actor accessed limited customer information but stated that sensitive financial and health-related data were not compromised. CyberPress

AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code The AppsFlyer Web SDK was temporarily hijacked this week with malicious code used to steal cryptocurrency in a supply-chain attack. […] BleepingComputer

Microsoft: Windows 11 users can’t access C: drive on some Samsung PCs Microsoft is investigating a new issue affecting some Samsung laptops running Windows 11 after installing the February 2026 security updates, in which users lose access to their C:\ drive and are unable to launch applications. […] BleepingComputer

Critical HPE AOS-CX Vulnerability Allows Admin Password Resets The vulnerability can be exploited remotely, without authentication, to circumvent existing authentication controls. SecurityWeek

AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.