IT‑Sicherheits‑Digest (2026-03-06)

Aktuelle Security‑News

heise security

  • Schlag gegen Kryptomixer – Millionen-Geldwäsche im Visier (2026-03-06 06:36 UTC)
    • Kurz: 140 Millionen US-Dollar in Ethereum verschleiert: 29-Jähriger aus Stuttgart betrieb Kryptomixer. Taskforce ermittelt.
    • Quelle: Link
  • Auslegungssache 154: Alterskontrollen, Meta-Schadenersatz und der Omnibus-Streit (2026-03-06 05:10 UTC)
    • Kurz: In der aktuellen Episode des c’t-Datenschutz-Podcasts sprechen Holger Bleich und Joerg Heidrich über bedenkliche Altersprüfungen und ein Urteil gegen Meta.
    • Quelle: Link
  • Deutsche Unternehmen ignorieren NIS2-Pflichten massiv (2026-03-05 16:16 UTC)
    • Kurz: Schwarz Digits warnt: Fast die Hälfte aller Unternehmen kennt ihre Pflichten unter NIS2 nicht. Besonders Kleinbetrieben drohen hohe Strafen.
    • Quelle: Link

BleepingComputer

  • Chinese state hackers target telcos with new malware toolkit (2026-03-05 23:19 UTC)
    • Kurz: A China-linked advanced persistent threat actor tracked as UAT-9244 has been targeting telecommunication service providers in South America since 2024, compromising Windows, Linux, and network-edge devices. […]
    • Quelle: Link
  • Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malware (2026-03-05 22:37 UTC)
    • Kurz: Fake OpenClaw installers hosted in GitHub repositories and promoted by Microsoft Bing’s AI-enhanced search feature instructed users to run commands that deployed information stealers and proxy malware. […]
    • Quelle: Link
  • Wikipedia hit by self-propagating JavaScript worm that vandalized pages (2026-03-05 20:42 UTC)
    • Kurz: The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis. […]
    • Quelle: Link

The Hacker News

  • Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager Vulnerabilities (2026-03-05 15:22 UTC)
    • Kurz: Cisco has disclosed that two more vulnerabilities affecting Catalyst SD-WAN Manager (formerly SD-WAN vManage) have come under active exploitation in the wild. The vulnerabilities in question are listed below - CVE-2026-20122 (CVSS score: 7.…
    • Quelle: Link
  • Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders (2026-03-05 15:22 UTC)
    • Kurz: Most organizations assume encrypted data is safe. But many attackers are already preparing for a future where today’s encryption can be broken. Instead of trying to decrypt information now, they are collecting encrypted data and storing it …
    • Quelle: Link
  • ThreatsDay Bulletin: DDR5 Bot Scalping, Samsung TV Tracking, Reddit Privacy Fine & More (2026-03-05 13:44 UTC)
    • Kurz: Some weeks in cybersecurity feel routine. This one doesn’t. Several new developments surfaced over the past few days, showing how quickly the threat landscape keeps shifting. Researchers uncovered fresh activity, security teams shared new f…
    • Quelle: Link

Neue CVEs (letzte 24h, NVD‑Abgleich)

Fortinet FortiGate (7.4.x)

  • Keine neuen Treffer in den letzten 24h.

Atlassian (Jira/Confluence)

  • Keine neuen Treffer in den letzten 24h.

HPE/Aruba Switches

  • Keine neuen Treffer in den letzten 24h.

VMware ESXi/vCenter (7.x)

  • Keine neuen Treffer in den letzten 24h.

Hinweis

  • CVE‑Treffer sind ein Frühwarn‑Check (NVD) und müssen für eure exakten Versionen/Deployments gegengeprüft werden (Vendor Advisory/Patches).