Iranian Hackers Cripple Medtech Giant Stryker with Wiper Attack; Global Law Enforcement Dismantles Major Cybercrime Infrastructure
Summary
This 24-hour period saw a surge in high-impact cyber events, headlined by a destructive wiper attack on medical technology firm Stryker, attributed to the Iran-linked Handala group who weaponized Microsoft Intune. Concurrently, a massive data breach at LexisNexis was confirmed, stemming from an exploited critical vulnerability. On the defensive side, international law enforcement successfully dismantled the 'SocksEscort' botnet and the 'Tycoon 2FA' phishing platform, disrupting major cybercrime operations. Other significant events include CISA's warning of an actively exploited SharePoint RCE flaw and Microsoft's extensive March Patch Tuesday release.
Today New Articles
ShinyHunters Claims Massive Data Theft from Telus Digital, Demands $65 Million
Canadian business process outsourcer Telus Digital is investigating a major security incident after the notorious 'ShinyHunters' hacking group claimed to have stolen nearly a petabyte of data. The attackers are demanding a $65 million ransom. The breach allege...
Police Scotland Fined £66,000 by UK Regulator for Egregious Data Protection Failures
The UK's Information Commissioner's Office (ICO) has fined Police Scotland £66,000 for severe data protection violations. The police force improperly extracted the entire contents of a crime victim's mobile phone, collecting excessive and irrelevant sensitive...
"DarkSword" iOS Exploit Chain Actively Used by Spyware Vendors and State Actors
Google's Threat Analysis Group (TAG) has uncovered a sophisticated iOS exploit chain named 'DarkSword,' which is being actively used by multiple threat actors, including commercial spyware vendors and state-sponsored groups. The exploit leverages six vulnerabi...
CISA Warns: Critical SharePoint RCE Flaw Now Actively Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical remote code execution (RCE) vulnerability in Microsoft SharePoint Server, CVE-2026-20963, to its Known Exploited Vulnerabilities (KEV) catalog, confirming it is under active...