📨 In March, we continue the year 2026 with more informative content and events… So, we break down the last thirty days with the help of your trusted CSIRT.

News + Analysis
➡️ We analyze a Google Chrome vulnerability that allowed manipulated data on a malicious HTML page with unverified data. We also provide advice for anyone affected by the vulnerability.

➡️ A new malware program evolves and becomes the perfect structure for cybercrime. We conducted an analysis explaining how the software evolved to become a fundamental structure for cybercriminals.

Alerts
➡️ CISA alerted to a critical vulnerability in VMware Aria Operations that was exploited to access customer data.

➡️ The FBI seizes two websites linked to a pro-Iranian hacking group known as the Handala Hack Team. ➡️Oracle releases an urgent security update to fix a critical vulnerability that compromises user data.

➡️Serious vulnerability in Linux. A hidden malicious program gains remote access, bypassing authentication and compromising users' systems with this software, demonstrating that no system is impenetrable.

📨Awareness
➡️If an AI generates an image of a minor, there is a solution to remove it from databases. StopNCII is one of the most effective digital tools for protecting minors; this initiative has helped more than 200,000 families.

📨Highlights
🚨 Málaga will be the epicenter of digital security on March 24th and 25th with the 5th Andalusian Cybersecurity Congress.

See you in the next installment!
Regards,
CSIRT-CAN Team.