Massive Data Breaches at Basic-Fit and Booking.com Expose Millions; CISA Warns of Actively Exploited Zero-Days

Publication Date: April 14, 2026

Summary

This 24-hour period has seen major consumer data breaches, with fitness giant Basic-Fit exposing bank details of 1 million members and Booking.com confirming a compromise of customer reservation data. Concurrently, CISA has issued urgent warnings for multiple actively exploited zero-day vulnerabilities in Adobe, Ivanti, and Fortinet products, demanding immediate patching. Ransomware and supply-chain attacks also continue to plague organizations, with the Qilin group targeting a German political party and ShinyHunters threatening to leak data from GTA developer Rockstar Games.

Today New Articles

Open-Source Devs Targeted in Sophisticated Phishing Attack Using Slack and Google Sites

A sophisticated social engineering campaign is targeting open-source developers on Slack, with attackers impersonating a Linux Foundation official to gain trust. Victims are lured to a fake login page hosted on Google Sites to harvest their credentials. The at...

OneDigital Discloses Supply-Chain Breach from 2025, 28,000 Individuals Impacted

Financial advisory firm OneDigital Investment Advisors has disclosed a data breach that occurred in August 2025, impacting 28,414 individuals. The incident was a supply-chain attack stemming from a vulnerability in the Drift online chat application, which was...

Hack-for-Hire Espionage Campaign Linked to BITTER APT Targets Phones in MENA Region

A large-scale, long-running cyber-espionage campaign is targeting journalists, activists, and officials, primarily in the Middle East and North Africa (MENA) region. The 'hack-for-hire' operation, linked by researchers to the BITTER APT group, uses sophisticat...

Utah Surgical Practice Data Leaked by 'PEAR' Ransomware; 50,000 Patients' SSNs and Financial Info Exposed

Rocky Mountain Associated Physicians (RMAP), a Utah-based surgical practice, has reported a data breach affecting 50,640 patients. A threat group calling itself 'PEAR' (Pure Extortion and Ransom) has claimed responsibility, and after its ransom demands were no...

CISA KEV Update: Six Flaws Added, Including Critical Fortinet SQLi and Adobe RCE

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added six vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, confirming they are under active attack. The list includes a critical SQL injection flaw in Fortinet FortiClien...

Microsoft 365 Admins Locked Out of Tenant After Attacker Removes All Global Admin Roles

An organization has reported a 'business-critical security incident' after a malicious actor gained access to their Microsoft 365 tenant and systematically removed the 'Global Administrator' role from all assigned user accounts. This action resulted in a compl...

Article Updates

CISA Mandates Federal Agencies Patch Actively Exploited Ivanti EPMM Flaw by April 11

Update:This update provides more specific information regarding the actively exploited Ivanti EPMM vulnerability, CVE-2026-1340. It now explicitly lists affected versions as 12.5 through 12.7. The vulnerability is further characterized as 'wormable' due to its low at...

Marimo RCE Flaw Exploited in Under 10 Hours of Public Disclosure

Update:The new article, dated April 14, 2026, provides further confirmation of the active and immediate exploitation of CVE-2026-39987 in Marimo Python notebooks. New threat intelligence reports from April 13, 2026, underscore the ongoing nature of attacks, emphasizi...