ONSEC Cyber Daily: March 18, 2026. Welcome to today's edition of ONSEC Cyber Daily, where the digital battlefield is more intense than ever. As AI reshapes the landscape, XM Cyber leads the charge by integrating AI exposure visibility into attack path analysis, offering a new lens on threat detection. Meanwhile, the supply chain is under siege, with vulnerabilities in text code editors being exploited, echoing a broader trend of cybercriminals targeting weak links. The Cybersecurity and Infrastructure Security Agency (CISA) issues urgent alerts on multiple fronts, from Wing FTP Server vulnerabilities to critical Chrome 0-day flaws, urging immediate action to patch and protect. As the world teeters on the brink of cyberwarfare, Armis warns of a global tipping point accelerated by AI. In this high-stakes environment, Black Kite introduces financial risk modeling to third-party assessments, underscoring the need for comprehensive cyber risk strategies. Stay vigilant, as today's insights reveal the interconnected nature of our digital ecosystem and the relentless pursuit of cyber resilience.

Exploits Alert

1. XM Cyber Adds AI Exposure Visibility to Attack Path Analysis: XM Cyber has introduced AI-driven exposure visibility to enhance its attack path analysis capabilities. This development aims to provide organizations with a more comprehensive understanding of potential vulnerabilities and attack vectors, allowing for improved defensive strategies. Source: MSSP Alert
2. CISA Warns of Wing FTP Server Vulnerability Exploited in Attacks: The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a critical vulnerability in Wing FTP Server that is being actively exploited by cybercriminals. This flaw allows attackers to gain unauthorized access and potentially compromise sensitive data, urging organizations to apply patches immediately. Source: Cyber Security News
3. Armis Warns Cyberwarfare Threats at Global Tipping Point as AI Accelerates Escalation: Armis has highlighted the increasing threat of cyberwarfare, emphasizing that AI is accelerating the escalation of these threats to a global tipping point. The company stresses the need for enhanced cyber exposure management to mitigate potential risks. Source: Armis
4. CISA Warns of Chrome 0-Day Vulnerabilities Exploited in Attacks: CISA has alerted organizations about zero-day vulnerabilities in Google Chrome that are being exploited by cybercriminals and state-sponsored groups. These vulnerabilities can be used to deploy malware or steal sensitive data, highlighting the importance of timely updates and patches. Source: Cyber Security News
5. AppsFlyer SDK Hijacked in Supply-Chain Attack Targeting Cryptocurrency: A supply-chain attack has compromised the AppsFlyer SDK, targeting cryptocurrency-related applications. The attack, linked to the Iran-based group Handala, underscores the growing threat of supply-chain vulnerabilities in the tech industry. Source: SC Media

Vulnerabilities & Patches

1. FAQ on CVE-2026-21514: OLE Bypass N-Day in Microsoft Word: A critical vulnerability in Microsoft Word, CVE-2026-21514, allows attackers to bypass security measures using OLE objects. Organizations are urged to prioritize patching across all endpoints and implement additional controls such as OLE/COM email gateway filtering to mitigate potential attacks. Source: Security Boulevard
2. Apple Pushes First Background Security Improvements Update to Fix WebKit Flaw: Apple has released a crucial update addressing a WebKit vulnerability, CVE-2026-20643, affecting iPhones and iPads. This flaw could allow attackers to execute arbitrary code, making it essential for users to update their devices promptly to ensure protection. Source: Bleeping Computer
3. CISA Warns of Actively Exploited Wing FTP Server Vulnerability: The Wing FTP Server vulnerabilities, CVE-2026-25172 and CVE-2026-25173, are being actively exploited, prompting CISA to urge immediate patching. These vulnerabilities could lead to unauthorized access and data breaches if left unpatched. Source: SC Media
4. CVE-2026-3888: Important Snap Flaw Enables Local Privilege Escalation to Root: A significant vulnerability in Snap, CVE-2026-3888, allows local privilege escalation to root, posing a severe security risk. Organizations are advised to apply patches using Qualys Patch Management to prevent potential exploitation. Source: Qualys
5. Google Warns Chrome Users of Critical Zero-Day Risks, Urges Immediate Update: A high-severity flaw in Chrome's Skia graphics engine, CVE-2026-3909, has been identified, posing a critical security risk. Google advises users to update their browsers immediately to protect against potential zero-day attacks. Source: The Hans India

Podcasts

1. Anton’s Vibe Coding Experience: A Reflection on Risk Decisions: This podcast episode delves into the intricacies of risk management in cybersecurity, offering insights from Anton's personal experiences in coding and decision-making. It emphasizes the importance of understanding risk dynamics and how they influence security strategies. The discussion is both technical and philosophical, providing listeners with a comprehensive view of risk in the digital age. Source: Security Boulevard
2. AI Agent & Copilot Podcast: Microsoft Data Scientists Vaishali Vinay and Raghav Bhatta on AI for Cyber Defense: This episode features Microsoft data scientists discussing the role of AI in enhancing cyber defense mechanisms. They explore how AI technologies can predict and mitigate cyber threats, offering a glimpse into the future of automated security solutions. The conversation is rich with examples and potential applications, making it a must-listen for those interested in AI and cybersecurity. Source: Cloud Wars
3. Cybersecurity Leadership: Jen Easterly at RSA Conference: This podcast episode highlights Jen Easterly's keynote at the RSA Conference, focusing on the evolving landscape of cybersecurity leadership. Easterly shares her vision for the future, emphasizing collaboration and innovation as key drivers for effective security strategies. Her insights are particularly relevant for current and aspiring leaders in the cybersecurity field. Source: Security Boulevard
4. Exploring the Future of Cybersecurity with AI: This podcast explores the intersection of AI and cybersecurity, discussing how emerging technologies are reshaping the security landscape. Experts weigh in on the potential benefits and challenges of integrating AI into cybersecurity frameworks. The episode provides a forward-looking perspective on how AI could transform threat detection and response. Source: Cloud Wars
5. Innovative Risk Management Strategies in Cybersecurity: This episode focuses on innovative approaches to risk management within the cybersecurity domain. It covers various strategies that organizations can adopt to better anticipate and mitigate risks. The discussion is aimed at providing practical solutions for enhancing organizational resilience against cyber threats. Source: Security Boulevard

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, it's clear that the cyber landscape is evolving at an unprecedented pace. From XM Cyber's innovative AI exposure visibility to the relentless exploitation of vulnerabilities in supply chains and software, the digital battlefield is more dynamic than ever. Whether it's the critical warnings from CISA or the strategic insights from Black Kite, staying informed is your best defense. Remember, cyber threats don't just affect you—they impact your entire network. So, why not share this newsletter with your friends and colleagues? Together, we can build a more resilient cyber community. Until tomorrow, stay vigilant and keep your systems secure!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)