Cyber Security Week in Review: March 20, 2026
In brief: Threat actors are exploiting Zimbra, MS SharePoint and WingFTP flaws, police disrupt the Aisuru, KimWolf, JackSkid and Mossad botnets, and more.
Cybersecurity News - Page 1
New DarkSword exploit kit targets iPhones, steals crypto and personal data
DarkSword leverages six known vulnerabilities to gain deep access to compromised devices.
Interlock ransomware gang exploits Cisco firewall zero-day in targeted attacks
Interlock had been abusing the flaw as a zero-day issue in real-world attacks as early as January 26.
GlassWorm supply-chain attack expands across GitHub, npm, and VSCode
Attackers gained initial access by compromising GitHub accounts and force-pushing malicious commits into existing projects.
Iranian MuddyWater expands cyberespionage operations with AI-driven tools
The group is now using AI-assisted malware that includes anti-analysis features, helping it stay hidden in compromised systems for longer periods.
Russia turns Vienna into hub for electronic and satellite spying
Russia systematically employs diplomatic missions for intelligence collection, cyber operations, and influence campaigns.
Threat actors abuse Bench.sh benchmarking tool for reconnaissance
Attackers are now incorporating Bench.sh as a lightweight reconnaissance utility after gaining initial access.
EU imposes new sanctions on Chinese and Iranian firms over cyberattacks
Three companies and two individuals are accused of carrying out cyberattacks targeting EU member states and international partners.
North Korea-linked hackers abuse Android security feature in new cyber campaign
Attackers distributed malicious files through South Korea’s popular KakaoTalk messaging platform.
Russia-linked threat actor targets Ukraine with novel DRILLAPP backdoor
The activity shares similarities with a previous operation conducted by the threat group Laundry Bear aka UAC-0190.
Showing elements 1 - 10