Daily Cyber Threat Brief 🔴 Mar 19’s Top Cyber News NOW! - Ep 1092
Mar 19, 2026
Coverage of a new iOS exploit kit tied to Russian actors and urgent mobile patching. Breakdown of a malicious crypto browser extension takedown. Examination of a huge North Korean fake IT-worker money-making network. Discussion of shadow AI risks in SaaS and stolen OAuth tokens. Report on an exploited Cisco firewall zero-day and AI outperforming humans in CTF hacking contests.
AI Snips
Chapters
Transcript
Episode notes
Mobile Exploits Rise With AI‑Built Tooling
- Mobile devices are increasingly targeted with exploit kits like Dark Sword that steal passwords, messages, and crypto wallets.
- The Dark Sword iOS kit targeted iOS 18 and earlier and was reportedly developed using AI, underlining the need to patch phones promptly.
Patch Phones And Enforce Mobile Posture
- Do keep mobile OS versions up to date and apply mobile device management (MDM) and posture checks before granting access.
- Treat phones as part of your endpoint ecosystem and require minimum configuration and conditional access before connecting to sensitive systems.
Malicious Extensions Masquerade As Wallet Protectors
- Browser extensions remain a major attack vector; ShieldGuard posed as a wallet protector but harvested wallet data and executed remote code.
- Okta Threat Intelligence helped dismantle the extension and remove it from stores, showing vendor threat teams can be effective defenders.