Global Cyber Threats Escalate: China-Linked APTs, Critical Telegram Flaw, and Widespread Ransomware Attacks

Major Canadian Telecommunication Providers Rogers, Telus, and Freedom Mobile Disclose Separate Data Breaches

Canada's telecommunications sector is under fire after three of its largest carriers—Rogers, Telus, and Freedom Mobile—each reported significant data breaches. The incidents, which occurred within the same week, exposed customer information such as names, contact details, and account numbers. The breaches highlight systemic vulnerabilities, particularly related to third-party and subcontractor access. Rogers and its subsidiary Fido confirmed unauthorized access to customer data, while Telus was targeted by the 'ShinyHunters' hacking group, which claimed to have stolen nearly a petabyte of data. Freedom Mobile suffered its second breach in six months due to compromised subcontractor credentials, prompting all three companies to enhance their security protocols.

third-party risksubcontractorcustomer datatelecomCanada

5 min read

Supply Chain Attack

CRITICAL: Telegram Hit by 9.8-Rated Zero-Click RCE Flaw on Android & Linux

CRITICAL

Critical Zero-Click Remote Code Execution Vulnerability Discovered in Telegram Messenger

A critical zero-click remote code execution (RCE) vulnerability has been discovered in the Telegram messenger application, affecting both Android and Linux versions. The flaw, tracked as ZDI-CAN-30207, has been assigned a CVSS score of 9.8 out of 10, reflecting its extreme severity. An attacker can exploit this vulnerability by simply sending a specially crafted animated sticker to a victim. No user interaction is required; the malicious code executes as soon as the media is viewed. A successful exploit could grant the attacker full control over the user's account and correspondence. Reports suggest an exploit is already being sold in underground communities. Telegram has not yet released a patch.

zero-clickRCEanimated stickerAndroidLinux +1 more

CRITICAL: Telegram Hit by 9.8-Rated Zero-Click RCE Flaw on Android & Linux

Vulnerability

Mobile Security

INC Ransomware Leaks 500GB of Data from Namibia Airports Company on Dark Web

Namibia Airports Company Confirms Data Leak on Dark Web Following INC Ransomware Attack

The Namibia Airports Company (NAC) has confirmed that approximately 500GB of sensitive data stolen during a ransomware attack has been published on the dark web. The attack, attributed to the INC Ransomware Group, was first detected on March 6, 2026. The threat actors employed double-extortion tactics, exfiltrating the data before encrypting systems and demanding a ransom. A preliminary assessment of the leaked data suggests it includes sensitive files such as airport permit records, financial documents, engineering plans, and internal reports. While airport operations were not affected, the NAC is investigating the full scope of the breach, which marks the second known attack in Namibia by the INC Ransomware Group.

double extortiondark webdata leakaviationAfrica

Ransomware

Threat Actor

Iran-Linked 'Handala Hack Team' Breaches Personal Gmail of FBI Director Kash Patel

Iran-Linked Hacking Group Breaches Personal Email Account of FBI Director Kash Patel, Leaks Data

The personal Gmail account of FBI Director Kash Patel has been compromised by an Iran-linked hacking group calling itself the 'Handala Hack Team.' The group claimed responsibility for the breach and subsequently leaked personal data, including photographs, emails, and documents from 2010 to 2019. The FBI has confirmed the breach of the director's personal account. In its claim, the Handala group stated the attack was a response to U.S. government actions and boasted about its ability to penetrate 'impenetrable' systems. The same group has also been linked to a separate leak of personal data belonging to Israeli government and military personnel, highlighting a pattern of targeting high-profile government officials.

nation-stateIranGmailaccount takeoverphishing +1 more

Iran-Linked 'Handala Hack Team' Breaches Personal Gmail of FBI Director Kash Patel

Threat Actor

Supreme Court to Decide FCC's Power to Fine Telcos for Customer Data Breaches

INFORMATIONAL

Supreme Court to Hear Case on FCC's Authority to Penalize Carriers for Data Privacy Violations

The U.S. Supreme Court is set to hear a pivotal case, FCC v. Verizon and AT&T v. FCC, concerning the Federal Communications Commission's (FCC) authority to penalize wireless carriers for failing to protect customer data. The case stems from fines the FCC issued in 2020 after an investigation found major carriers were selling access to customers' sensitive location data without reasonable safeguards. A coalition including two former FCC Chairs and several consumer advocacy groups has filed a brief in support of the FCC, arguing that stripping the agency of its enforcement power would leave consumers without a meaningful remedy for privacy violations. The carriers contend the FCC overstepped its authority, and the court's decision will have significant implications for consumer data privacy regulation in the U.S.

Supreme CourtFCCdata privacyregulationlaw +1 more

5 min read

Supreme Court to Decide FCC's Power to Fine Telcos for Customer Data Breaches

Policy and Compliance

Regulatory

European Commission Hit by Data Breach; Attacker Claims 350GB Exfiltrated from AWS Cloud

European Commission Confirms Cyberattack on AWS-Hosted Cloud Infrastructure, Resulting in Data Breach

The European Commission has confirmed a data breach affecting its cloud infrastructure hosted on Amazon Web Services (AWS). The attack targeted the Europa.eu websites, and an attacker has claimed to have exfiltrated over 350 GB of data, allegedly including databases and employee records. The Commission has stated that its internal systems were not affected and that the attacker has not made any extortion demands. This incident follows a separate breach of the Commission's mobile device management system in January 2026 and highlights the persistent cyber threats facing major government entities. In response, the EU has pledged to strengthen the security of its critical services.

cloud breachAWSEuropean Uniongovernmentdata exfiltration

Cloud Security

'ClickFix' Campaign Tricks macOS Users into Installing Infiniti Stealer via Fake CAPTCHA

MEDIUM

macOS Users Targeted by "ClickFix" Social Engineering Campaign Distributing Infiniti Stealer Malware

A social engineering campaign dubbed 'ClickFix' is targeting macOS users with a sophisticated ruse to install the 'Infiniti Stealer' malware. The attack begins with a fake Cloudflare CAPTCHA page that, instead of presenting a puzzle, instructs the user to open their Terminal and run a malicious command to 'prove they are human.' This user-initiated execution triggers a multi-stage infection chain involving a Bash script and a Nuitka loader, which ultimately deploys the Python-based Infiniti Stealer. The malware is designed to harvest a wide array of sensitive data, including browser credentials, macOS Keychain contents, cryptocurrency wallets, and developer secrets, before exfiltrating the stolen information to the attacker's C2 server.