👉 What's happening in cybersecurity today

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please Subscribe

Get BlueSleuth-Lite

🚨 Cyber Alerts

1. APT28 Deploys BadPaw And MeowMeow In Ukraine

Cybersecurity researchers have identified a new Russian cyber operation targeting Ukrainian organizations using two newly discovered malware strains called BadPaw and MeowMeow. Attributed to the state-sponsored group APT28, the campaign utilizes phishing emails and tracking pixels to deliver sophisticated backdoors through deceptive government-themed documents.

2. Fake Laravel Packages Spread RAT Malware

Cybersecurity researchers have discovered malicious PHP packages on the Packagist registry that pose as legitimate Laravel utilities to infect systems with a cross-platform remote access trojan. These packages, specifically targeting Windows, macOS, and Linux, allow attackers to execute commands, steal files, and maintain persistent access to the compromised server.

3. Coruna iOS Exploit Kit Targets iOS 13–17

Google has uncovered a sophisticated exploit kit named Coruna that targeted iPhones running versions 13.0 through 17.2.1 using a series of advanced security bypasses. The kit transitioned from commercial surveillance groups to state-sponsored actors and eventually to cybercriminals, marking a rare instance of elite-grade spyware being used for mass exploitation.

For more alerts click here!

Subscribe Now

💥 Cyber Incidents

4. Colombia Tax Agency Breach May Expose Data

Cybersecurity experts and citizens are on high alert following reports that Colombia’s national tax authority, DIAN, suffered a massive data breach affecting millions of residents. A hacker known as ArcRaidersPlayer allegedly compromised an appointment scheduling subdomain, potentially exposing sensitive personal details and offering the database for sale online.

5. Passaic County Hit By Malware Attack

Passaic County government operations faced significant disruptions on March 4 following a targeted malware attack that disabled the county’s entire telephone network. Local officials are currently collaborating with state and federal investigators to contain the breach and determine if any sensitive data was compromised during the incident.

6. 149 Hacktivist DDoS Attacks Worldwide

Cybersecurity experts are reporting a spike in hacktivist attacks following recent joint military actions by the U.S. and Israel against Iran. This digital retaliation has seen a small number of specialized groups launch over a hundred coordinated strikes against government and financial targets across sixteen countries.

For more incidents click here!

Claim Your Workspace

📢 Cyber News

7. Europol Busts Tycoon 2FA Phishing Service

Law enforcement and security firms successfully dismantled Tycoon 2FA, a massive phishing-as-a-service platform that enabled criminals to bypass multi-factor authentication and harvest credentials. The operation, which targeted nearly 100,000 organizations, resulted in the seizure of 330 domains and the identification of the toolkit’s primary developer.

8. FBI and Europol Seize LeakBase Forum

A major international law enforcement operation has successfully shut down LeakBase, a massive online marketplace used by cybercriminals to trade stolen data and hacking tools. During the crackdown, authorities seized the forum’s infrastructure and preserved all internal user data, including private messages and IP logs, to support ongoing criminal investigations.

9. Israel Says It Hit Iran Cyber Warfare HQ

The Israeli military announced on Wednesday that it targeted a facility in Tehran used as the command center for Iran’s cyber operations. While the strike hit significant intelligence and electronic hubs, experts are questioning whether the physical destruction of these buildings will truly stop Iran’s ability to launch digital attacks.

For more news click here!

Get Help

📈Cyber Stocks

Cybersecurity stocks on Thursday, 5th March 2026 showed mixed performance as investors weighed strong enterprise demand for security solutions against profit taking in high growth software names amid broader tech volatility.

• CrowdStrike Holdings finished around 372.12 dollars and moved higher, buoyed by a strong earnings beat and upbeat forward revenue forecast despite some valuation headwinds.

• Okta traded near 72.50 dollars and was modestly lower, with identity and access management stocks reflecting mixed flows amid sector uncertainty.

• Zscaler closed around 146.83 dollars and was softer, as recent quarterly results and net new ARR trends weighed on market appetite.

• Rapid7 closed near 6.22 dollars and was slightly lower, tracking mixed sentiment in vulnerability management and SIEM exposures.

• CyberArk Software reference levels remained around ~408.85 dollars and were modestly flat to lower, reflecting privileged access management demand amid sector headwinds.

💡 Cyber Tip

📱 Coruna iOS Exploit Kit Targets iPhones

Researchers uncovered an advanced exploit kit called Coruna that targeted iPhones running iOS 13 through 17.2.1. The toolkit contained multiple exploit chains capable of achieving remote code execution through malicious websites, allowing attackers to compromise devices before Apple patched the flaws.

🛠️ What You Should Do

• Update iPhones to the latest iOS version immediately

• Avoid visiting suspicious or unknown websites

• Enable automatic security updates on Apple devices

• Use mobile security monitoring in enterprise environments

• Restart devices regularly to disrupt potential spyware activity

⚠️ Why This Matters
Coruna shows how high-end spyware tools can move from surveillance operations to cybercriminal use. When advanced exploit kits spread widely, millions of unpatched devices become potential targets.

Visit BookClub

📚 Cyber Book

Online Safety in Roblox by Josh Gregory

Get Book

Copyright © 2026 CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium