CISA Warns on Intune & SharePoint Exploits; Russian Spies Target Signal; DarkSword iOS Zero-Click Hits iPhones

Publication Date: March 20, 2026

Summary

This 24-hour cybersecurity brief covers a critical period from March 19-20, 2026. Key events include CISA's urgent warnings following a destructive attack on Stryker using Microsoft Intune and active exploitation of a critical SharePoint RCE flaw (CVE-2026-20963). The FBI also attributed a global phishing campaign targeting Signal and WhatsApp users to Russian Intelligence. Concurrently, researchers detailed 'DarkSword,' a potent zero-click iOS exploit chain used by spyware vendors, and the Medusa ransomware group crippled a major US medical center. These incidents highlight escalating threats against cloud management tools, critical software vulnerabilities, and secure communication platforms.

Today New Articles

Identity Service Providers CGI Group and Aura Hit by Data Breaches

Two separate data breaches have impacted companies in the identity services sector. IT consulting giant CGI Group, which manages Sweden's e-government platform, is investigating a breach after its data was found on the dark web. This raises concerns about the...

Foster City Declares State of Emergency After Cyberattack Cripples Public Services

Foster City, California, has declared a state of emergency following a significant cybersecurity breach on March 19, 2026. The attack has caused a widespread shutdown of all non-emergency city services, impacting the public's ability to conduct business with t...

Poland Thwarts Iran-Linked Cyberattack on National Nuclear Research Center

Polish officials announced on March 20, 2026, that they had successfully thwarted a cyberattack targeting the IT infrastructure of the country's National Center for Nuclear Research (NCBJ). While specific details about the attack's nature or methods were not d...

RSAC 2026 Preview: AI Risks and Quantum Computing Threat Dominate Agenda

As the cybersecurity industry gears up for RSA Conference 2026 in San Francisco, the agenda reveals a significant focus on two transformative technologies: agentic Artificial Intelligence (AI) and quantum computing. Key themes revolve around managing the new a...

LAPSUS$ Hacking Group Reemerges, Claims Breach of Pharma Giant AstraZeneca

The notorious LAPSUS$ hacking group appears to have resurfaced, claiming a significant data breach at the pharmaceutical giant AstraZeneca. In a departure from some of their previous high-profile attacks, the group is attempting to sell a 3GB archive of allege...

Article Updates

Interlock Ransomware Exploited Critical Cisco Firewall Zero-Day for 36 Days Before Patch

Update:Further information has emerged regarding the Interlock ransomware group's exploitation of CVE-2026-20131. Amazon's threat intelligence team discovered the activity via their MadPot honeypot network, and Cisco was reportedly unaware of the active exploitation...