Cybercriminals Target Accountants to Drain Russian Firms’ Bank Accounts
Cybercriminal group Hive0117 launched a wave of phishing attacks on Russian accountants between February and March 2026, compromising over 3,000 firms. The campaign deployed the DarkWatchman remote‑access trojan, allowing hackers to log into corporate banking portals and create fake salary transfers. The most lucrative theft exceeded 14 million rubles (about $178,000). Researchers say the operation is financially motivated and unrelated to the Russia‑Ukraine cyber conflict.
Passport Numbers for More than 300,000 Leaked During December Eurail Data Breach
Eurail B.V., the Dutch‑based rail‑pass provider, disclosed a December 26 cyber‑attack that exposed personal data for 308,777 customers, including passport numbers. Hackers copied the information and posted a sample on Telegram, while offering the full dataset for sale on the dark...
National Security Veterans Warn Against Delays in FISA 702 Reauthorization
A coalition of roughly 50 former national‑security officials sent a letter to Congress urging a clean, uninterrupted renewal of Section 702 of the Foreign Intelligence Surveillance Act before it expires on April 20. The group, which includes former DNI James Clapper and former...
Massachusetts Hospital Turning Ambulances Away After Cyberattack
A cyberattack on Signature Healthcare Brockton Hospital in Massachusetts forced the facility to turn away ambulances and activate downtime procedures, cancelling chemotherapy infusions while keeping emergency rooms and surgeries operational. The hospital is working with external experts to restore systems,...
UK Exposes Russian Cyber Unit Hacking Home Routers to Hijack Internet Traffic
British officials warned that Russian GRU‑linked hackers, known as Fancy Bear or APT28, are compromising home and small‑office routers to hijack internet traffic. The campaign exploits weak SNMP configurations and unpatched TP‑Link models, allowing attackers to alter DNS settings and conduct...
Cyberattack Hits Northern Ireland’s Centralized School Network, Disrupting Access for Thousands
A cyberattack on Northern Ireland’s centralized C2K school network forced the Education Authority to shut down access for hundreds of thousands of pupils and teachers. The breach, discovered last week, prompted immediate containment actions, including system shutdown and collaboration with...
EU Cyber Agency Attributes Major Data Breach to TeamPCP Hacking Group
EU cybersecurity agency CERT‑EU confirmed that the hacking group TeamPCP breached the European Commission’s Amazon Web Services account, exfiltrating about 92 GB of data on March 19. The stolen information, affecting 42 internal clients and at least 29 EU entities, included names,...
Massachusetts Emergency Communications System Impacted by Cyberattack
A cyberattack on the Patriot Regional Emergency Communications Center disrupted non‑emergency and business phone lines for several northern Massachusetts towns, though 9‑1‑1 services remained functional. The intrusion affected municipal public‑safety computer systems, prompting officials to engage insurers, external cybersecurity firms,...
Ukraine Warns Russian Hackers Are Revisiting Past Breaches to Prepare New Attacks
Ukraine’s cyber incident response team (CERT‑UA) warns Russian‑linked hackers are revisiting previously compromised systems to re‑establish footholds, marking a shift from the 2025 “steal‑and‑go” approach to sustained, long‑term access. Attackers now favor sophisticated social‑engineering, using phone calls and video chats...
Nissan Says Stolen Data Came From Third-Party Vendor After Hacking Group Claims Breach
Nissan confirmed that a recent cyber‑incident involved a third‑party vendor that services its North American dealerships, not the automaker’s own systems. The Everest hacking group alleges it stole 910 GB of data, including customer, dealership and loan information, and threatened to...
North Dakota Water Treatment Plant Reports March Ransomware Attack
A ransomware intrusion hit the Minot, North Dakota water treatment plant on March 14, forcing operators to unplug a server and run manual controls for about 16 hours. The city kept water safe and pressure stable, and no ransom was...
Italian Regulator Fines Financial Giant $36 Million for Data Protection Failures
Italian Data Protection Authority fined Intesa Sanpaolo €31.8 million ($36 million) for unauthorized access to over 3,500 customers' data between February 2022 and April 2024. The regulator cited serious shortcomings in technical and organizational safeguards, noting that internal controls failed to detect the breach....
FBI Confirms Theft of Director’s Personal Emails by Iran-Linked Hacking Group
The FBI confirmed that a hacking group tied to Iran's Ministry of Intelligence and Security, operating under the name Handala, breached the personal email account of FBI Director Kash Patel and leaked photos and routine correspondence from 2010 and 2019....
US Official Accuses China of Supporting, Exploiting Cyber Scam Crisis in Southeast Asia
A senior U.S. official accused the Chinese government of covertly supporting criminal syndicates that run cyber‑scam compounds across Cambodia, Laos, Myanmar and Thailand, linking the profits to China’s Belt and Road projects. The hearing highlighted that these scams steal more...
Pro-Ukraine Hacker Group Bearlyfy Targets Russian Companies with Custom Ransomware
Pro‑Ukraine hacker group Bearlyfy has launched more than 70 cyber‑attacks against Russian companies in the past year, escalating its campaign with a custom Windows ransomware strain called GenieLocker. Early operations demanded only a few thousand dollars, but recent ransom notes...
Ransomware Attack Disrupts Operation at Major Spanish Fishing Port
A ransomware attack on Spain’s Port of Vigo forced the isolation of critical cargo‑management servers, compelling the port to run operations manually. The breach was detected on Tuesday, and officials have refused to reconnect the systems until they can guarantee...
Puerto Rico Government Agency Cancels Driver’s License Appointments After Cyberattack
Puerto Rico’s Department of Transportation halted all driver‑license and registration appointments after a cyberattack forced the agency to disconnect its networks on Monday. The Puerto Rico Innovation and Technology Service (PRITS) is working with the DOT to assess the breach,...
Russia-Linked Malware Operation Collapses After Security Failures, Developer’s Arrest
A Russian‑linked Android spyware called ClayRat collapsed after security flaws and the arrest of its suspected developer. The malware could intercept SMS, calls, contacts, photos, and execute remote commands, and was marketed via Telegram subscriptions costing $90 per week or...
California City Reports Ransomware Attack as LA Transit Agency Finds ‘Unauthorized Activity’
Foster City, California declared a state of emergency after a ransomware attack forced the city to pause all non‑emergency public services. Emergency 911 and police dispatch remained functional, and the city council meeting was shifted to an in‑person format without...
FBI Takes Down Leak Sites Tied to Iran’s Ministry of Intelligence and Security
The FBI seized four domains that Iran’s Ministry of Intelligence and Security used to host stolen data, linking the operation to the state‑run “Handala” group. Handala leveraged Microsoft Intune’s wipe function to destroy data on more than 200,000 Stryker devices,...
Rep. LaHood on Why Section 702 Reauthorization Will Take a ‘Little Political Muscle’
Section 702 of the FISA, which permits warrantless collection of foreign communications, is set to sunset on April 20 unless Congress acts. Rep. Darin LaHood, chair of the House Intelligence Committee’s NSA subcommittee, urged an 18‑month “clean” reauthorization aligned with...
DHS Nominee Mullin Pressed on Restoring CISA Staffing
U.S. Senator Markwayne Mullin, President Trump’s nominee for DHS secretary, faced Senate questions about restoring the Cybersecurity and Infrastructure Security Agency’s (CISA) workforce after Kristi Noem cut roughly one‑third of its staff and slashed its budget. Mullin declined to promise...
US Intelligence Chief Grilled on Absence of Election Threats in Security Assessment
Director of National Intelligence Tulsi Gabbard defended leaving foreign election‑interference threats out of the annual global‑threat assessment, prompting sharp questioning from Senate Intelligence Committee Chairman Mark Warner. The omission raises alarms that the intelligence community may be constrained from reporting...
Cyberattack Disrupts Parking Payments in Russian City
The Russian city of Perm restored its automated parking payment system after a large‑scale distributed denial‑of‑service (DDoS) attack knocked the service offline, temporarily making parking free from March 10 to March 13. Authorities confirmed the system is fully operational and all payment...
Russia-Linked Espionage Campaign Targeting Ukraine Using Starlink and Charity Lures
A Russia‑linked hacker group known as Laundry Bear launched a new espionage campaign against Ukrainian entities in February, distributing a backdoor called DrillApp hidden in documents about Starlink terminals and the Come Back Alive charity. The malware activates through Microsoft...
Cyber National Mission Force to Get New Commander Amid Broader Leadership Turnover
The U.S. Cyber Command’s Cyber National Mission Force (CNMF) will be led by Brig. Gen. Matthew Lennox, replacing Maj. Gen. Lorna Mahlock, who moves to the deputy chief position at Cyber Command. The change‑of‑command ceremony is set for Friday at...
Finnish Intelligence Warns of Persistent Cyber Espionage From Russia, China
Finland’s Security and Intelligence Service (SUPO) warned that Russian and Chinese agencies continue extensive cyber‑espionage and influence campaigns targeting the country’s technology sector, research institutions and government. The assessment, released after SUPO’s 2023 reorganization, cites ongoing intrusions, theft of R&D...
Trump Nominee to Lead Cyber Command, NSA Clears Key Senate Hurdle
President Donald Trump’s nominee, Army Lt. Gen. Joshua Rudd, cleared a key Senate procedural hurdle to lead both U.S. Cyber Command and the National Security Agency. The Senate voted 68‑28 to invoke cloture, limiting debate and setting up a final...
White House Floats Victims Restoration Program for Millions Affected by Cyber Fraud
The White House issued an executive order directing multiple federal agencies to develop a 120‑day action plan against transnational cybercrime and to launch a Victim Restoration Program within 90 days. The program will use seized or forfeited funds to reimburse...
Kremlin Hackers Attempting to Compromise Signal, WhatsApp Accounts Globally
Russian state‑linked hackers are conducting a global campaign to hijack Signal and WhatsApp accounts belonging to government officials, military personnel, and journalists, Dutch intelligence warned. The operation relies on social‑engineering tactics—impersonating support staff to obtain verification codes or trick users...
New Jersey County Says Malware Attack Took Down Phone Lines, IT Systems
Passaic County, New Jersey, confirmed a malware attack that knocked out its phone lines and crippled county IT systems on March 5, 2026. The county is collaborating with federal and state authorities to contain and investigate the breach. This incident...
Sprawling FBI, European Operation Takes Down Leakbase Cybercriminal Forum
The FBI, together with European law‑enforcement partners, dismantled Leakbase, a subscription‑based cybercrime forum that sold stolen credentials and exploit tools. The coordinated “Operation Leak” involved 100 actions against 45 targets across more than a dozen nations, resulting in 13 arrests,...
California Fines National High School Ticketing Platform $1.1 Million for Privacy Violations
The California Privacy Protection Agency fined PlayOn Sports, the nation’s leading high‑school ticketing platform, $1.1 million for violating state privacy law. The agency found the company collected student data and served targeted ads without a clear, in‑platform opt‑out mechanism, forcing users...
Google Urges Supreme Court to Strike Down Geofence Warrants as Unconstitutional
Google filed an amicus brief urging the Supreme Court to deem geofence warrants unconstitutional. The brief argues that location data stored in the cloud is protected by the Fourth Amendment and that such warrants sweep up thousands of innocent people....
Western Allies Form 6G Security Coalition Amid Tech Rivalry with China
Western and Indo‑Pacific allies launched the Global Coalition on Telecoms (GCOT) at Mobile World Congress, uniting the United States, United Kingdom, Canada, Japan, Australia, Sweden and Finland. The coalition released a set of voluntary security and resilience principles designed to...
Alleged India-Linked Espionage Campaign Targeted Pakistan, Bangladesh, Sri Lanka
Arctic Wolf identified a year‑long espionage campaign, dubbed SloppyLemming, that targeted government agencies and critical infrastructure in Pakistan, Bangladesh and Sri Lanka starting in January 2025. The group delivered malicious PDFs containing the BurrowShell backdoor and Excel files with keyloggers, using 112 Cloudflare‑hosted...
British Organizations Urged to Be Alert to Threat of Iranian Cyberattacks
The UK’s National Cyber Security Centre (NCSC) has issued an advisory warning British organisations of a heightened indirect cyber threat from Iran following a joint U.S.-Israeli airstrike that killed Iran’s Supreme Leader. While the agency sees no immediate surge in...
Cyberattack Briefly Disrupts Russian Internet Regulator and Defense Ministry Websites
Russia’s internet regulator Roskomnadzor and the Defense Ministry suffered a large distributed denial‑of‑service (DDoS) attack that briefly took down several government websites. The agency described the assault as a complex multi‑vector operation originating from servers and botnets in Russia, the...
Samsung Updates ACR Privacy Practices After Texas Sues TV Manufacturers
Samsung has agreed to stop collecting and processing Automated Content Recognition (ACR) viewing data on its smart TVs in Texas unless consumers give explicit consent, resolving the state’s lawsuit filed in December. The company will roll out clear disclosure and...
Wyden Blocks Rudd Confirmation to Lead Cyber Command, NSA
Senator Ron Wyden announced he will block the Senate’s confirmation of Lt. Gen. Joshua Rudd as head of U.S. Cyber Command and the National Security Agency. Wyden argues Rudd lacks any digital‑warfare or signals‑intelligence background and gave vague answers on...
FTC Says It Won’t Enforce COPPA Against Proper Use of Age Verification Tools
The Federal Trade Commission issued a policy statement saying it will not pursue enforcement actions against websites that use age‑verification tools, provided they follow strict safeguards. The exemption applies only when age data is used solely for verification, is not...
PowerSchool, Chicago Public Schools to Settle Student Data Privacy Lawsuit for $17 Million
PowerSchool and Chicago Public Schools have agreed to a $17.25 million settlement to resolve a class‑action lawsuit accusing the ed‑tech firm of covertly recording student communications. The fund will be divided among more than 10 million potential class members and obligates PowerSchool...
US ‘Committed’ to Fighting Transnational Gangs Behind Southeast Asian Scam Compounds: FBI
A senior FBI official announced the United States is fully committed to leading a global fight against transnational criminal networks operating large‑scale scamming compounds in Southeast Asia. The FBI’s International Operations Division has been meeting with law‑enforcement counterparts in Thailand,...
Ukraine Pushes Tighter Telegram Regulation, Citing Russian Recruitment of Locals
Ukrainian officials are urging tighter regulation of Telegram after Russian intelligence allegedly used the app to recruit saboteurs for attacks, including a deadly Lviv strike that killed a police officer. Interior Minister Ihor Klymenko and SBU deputy head Ivan Rudnytskyi...
Ukraine Says Cyberattacks on Energy Grid Now Used to Guide Missile Strikes
Russian cyber actors targeting Ukraine’s energy grid have shifted from causing immediate outages to gathering intelligence that guides missile strikes. By mapping facilities, tracking repair crews, and monitoring recovery rates, they provide real‑time data that improves strike accuracy. The number...
Ransomware Gangs Advancing Moscow’s Geopolitical Aims, Romanian Cyber Chief Warns
Romanian officials say recent ransomware attacks on the country’s water agency, oil pipeline operator and coal‑based power producer were part of a coordinated Russian hybrid operation. Groups such as Qilin and Gentlemen, which speak Russian, claimed responsibility, linking the attacks...
Hackers Breach Contractor Linked to Ukraine’s Central Bank Collectible Coin Store
Ukraine’s National Bank temporarily shut down its online collectible‑coin store after a cyberattack compromised customer registration data. Attackers accessed personal details such as names, phone numbers, email and delivery addresses through a contractor that supports the storefront, but no financial...
Poland Bans Chinese-Made Cars From Entering Military Sites
Poland’s senior army commanders have issued a directive barring Chinese‑manufactured cars from entering protected military facilities. The move targets vehicles whose sensors, software or connectivity modules could transmit location and other sensitive data. It aligns Poland with recent U.S. and...
Starlink Restrictions Hit Russian Forces as Moscow Seeks Workarounds
Ukraine introduced a national verification system for Starlink terminals, disconnecting any unregistered devices in its territory. The move followed evidence that Russian forces were mounting Starlink‑enabled kamikaze drones, making them harder to jam. Since the crackdown, Ukrainian officials report a...
Space Emerges as New Front in Great Power Competition, Officials Warn
At the Munich Cyber Security Conference officials warned that space has shifted from a neutral commons to a frontline of great‑power competition, with satellites now integral to banking, military, and weather systems. The vulnerability of undersea cables, which underpin the...