Massive Healthcare Breaches Expose Millions, as Cisco Warns of Actively Exploited SD-WAN Flaws

Publication Date: March 9, 2026

Summary

A devastating day for data privacy on March 9, 2026, saw breaches at TriZetto, LexisNexis, and the French healthcare system collectively exposing the data of tens of millions. Geopolitical tensions manifested in cyberspace with an Iran-linked group hitting medical giant Stryker. On the vulnerability front, Cisco urges immediate patching for actively exploited Catalyst SD-WAN flaws, and a new zero-click bug in Microsoft Excel leverages Copilot for data theft, highlighting a day of critical supply chain risks, active exploitation, and widespread data exposure.

Today New Articles

Infutor Data Breach Exposes 676 Million Records, Including SSNs, via Misconfigured Database

Data solutions provider Infutor, now part of Verisk, has reportedly suffered a colossal data breach exposing over 676 million unique records. The leak is attributed to a misconfigured Elasticsearch database and is said to include highly sensitive personally id...

China-Linked Group UAT9244 Targets South American Telecoms with New Malware Suite

A newly identified China-linked threat actor, designated UAT9244, is targeting telecommunications providers in South America with a previously undocumented malware toolkit. The campaign appears focused on long-term espionage and intelligence collection within...

New Excel Flaw Allows Zero-Click Data Theft by Abusing Copilot AI

Microsoft has disclosed and patched CVE-2026-26144, a high-severity cross-site scripting (XSS) vulnerability in Microsoft Excel with a CVSS score of 7.5. The flaw is particularly dangerous due to a novel attack vector that allows for zero-click data theft by l...

Cyberattack on French Healthcare Vendor Exposes Medical Data of 15 Million People

The French health ministry has confirmed a massive cyberattack that compromised the administrative and medical data of over 15 million individuals. The breach was a supply chain attack originating from Cegedim Santé, a software company providing services to ap...

Article Updates

Google Patches Actively Exploited Qualcomm Zero-Day in Massive Android Update

Update:The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2026-21385, the actively exploited Qualcomm chipset vulnerability, to its Known Exploited Vulnerabilities (KEV) catalog. This action mandates that all U.S. federal agenci...

LexisNexis Confirms Breach After Hacker 'FulcrumSec' Leaks Data of 400,000 Users, Including U.S. Gov Employees

Update:Further analysis of the LexisNexis data breach reveals that the compromised data includes not only 400,000 user profiles but also a broader scope of 3.9 million records. Crucially, the leaked dataset reportedly contains a 'wallet seed phrase,' indicating the e...

Iranian-Aligned Groups Launch 'The Great Epic' Wiper Campaign Targeting Israel and Allies

Update:Iran-backed hacktivist group Handala has claimed responsibility for a major cyberattack on medical technology giant Stryker, causing global operational disruptions to its Microsoft environment. The group alleges a mass data-wiping campaign and exfiltration of...

Cisco SD-WAN Flaw (CVSS 10.0) Actively Exploited, CISA Issues Emergency Directive

Update:Cisco has issued an urgent advisory confirming that multiple vulnerabilities within its Catalyst SD-WAN platform are being actively exploited. These newly reported flaws allow unauthenticated attackers to not only gain unauthorized access but also escalate pri...