Cyber Briefing: 2026.03.12
Router botnet spreads, FortiGate devices exploited, Apple patches WebKit flaw, ransomware hits healthcare, and insider tied to BlackCat charged.
👉 What’s trending in cybersecurity today?
Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.
First time seeing this? Please Subscribe
🚨 Cyber Alerts
1. FKadNap Bot Hijacks 14K+ Devices
The KadNap malware has compromised over 14,000 edge devices, primarily ASUS routers, to create a stealthy proxy botnet for routing malicious traffic. By utilizing a peer-to-peer system based on the Kademlia protocol, the botnet masks its command infrastructure and sells access to its hijacked network through a service called Doppelganger.
2. Attackers Exploit FortiGate Devices
Cybercriminals are actively compromising FortiGate devices to infiltrate corporate networks and harvest sensitive configuration data, including service account credentials and architectural details. Researchers have observed these attacks targeting critical sectors like healthcare and government, often using the gained access to move laterally through the internal environment before being detected.
3. Apple Patches Coruna WebKit Exploit
Apple has recently extended security patches for a critical WebKit vulnerability to older device models after discovering the flaw was exploited by the Coruna exploit kit. These updates ensure that users unable to run the latest operating systems are protected against memory corruption risks triggered by malicious web content.
For more alerts click here!
💥 Cyber Incidents
4. Iran-Linked Hackers Hit Albania Parliament
Albania’s parliament recently reported a sophisticated cyberattack intended to wipe data and disable internal systems, though the official website remained functional. The hack, which disrupted email and computer access for lawmakers, was claimed by the group Homeland Justice in retaliation for Albania hosting members of an Iranian opposition movement.
5. Hackers Hijack Bonk.fun Domain
The Bonk.fun platform has warned users to stay away from its website following a security breach where hackers took control of a team account to deploy a phishing scam. The incident involved a malicious wallet-draining prompt that appeared on the site after the domain was compromised.
6. 235K Affected In Wisconsin Ambulance Hack
Wisconsin’s largest ambulance provider, Bell Ambulance, recently confirmed that a 2024 cyberattack by the Medusa ransomware gang compromised the sensitive data of over 235,000 individuals. The stolen information included highly private details such as Social Security numbers, medical records, and financial accounts, leading the FBI to issue warnings about the hacking group’s aggressive tactics against critical infrastructure.
For more incidents click here!
📢 Cyber News
7. US Charges BlackCat Ransomware Negotiator
The U.S. Department of Justice has charged Angelo Martino, a former DigitalMint employee, for his role in a scheme where ransomware negotiators secretly collaborated with the BlackCat cybercrime group. Working alongside other industry insiders, Martino allegedly leaked confidential negotiation details to attackers and shared ransom payments with the gang’s administrators.
8. WhatsApp Launches Parent-Managed Accounts
WhatsApp is introducing specialized accounts for pre-teens that allow parents to oversee contact lists and group memberships. While parents manage the security settings and connections, the platform maintains privacy by ensuring that messages and calls remain end-to-end encrypted and inaccessible to anyone else.
9. Meta Adds New Anti-Scam Tools
Meta is rolling out enhanced security measures across its social media and messaging platforms to preemptively block fraudulent activities. These updates focus on identifying suspicious behavioral patterns to warn users before they interact with potential scammers or compromise their account access.
For more news click here!
📈Cyber Stocks
Cybersecurity stocks on Thursday, 12 March 2026 traded with continued sensitivity to broader technology rotation and AI-driven competitive narratives.
Okta closed near around 78 dollars and was softer, with identity and access management names influenced by broader tech flows.
Zscaler ended near about 153 dollars and was modestly lower, reflecting cloud zero-trust security stocks tracking sector volatility.
Fortinet closed around approximately 84 dollars and was modestly lower, with network security demand steady but price action affected by broader tech rotation.
Check Point Software Technologies finished near around 150-155 dollars and was modestly softer, with defensive firewall demand balanced against sector headwinds.
SentinelOne closed at around 13 dollars and was slightly lower, reflecting pressure on smaller AI-focused endpoint names.
💡 Cyber Tip
🌐 Apple Patches WebKit Exploit Targeting Older iPhones
Apple has released new security updates for older iPhones, iPads, and Macs after a WebKit vulnerability was actively exploited through the Coruna exploit kit. The flaw could allow attackers to trigger memory corruption simply by getting a victim to open a malicious web page. Apple has now extended fixes to older systems such as iOS 15.8.7 and 16.7.15 to protect legacy devices.
🛠️ What You Should Do
Install the latest available software update for your device immediately
Enable automatic updates so security patches are applied quickly
Avoid visiting unknown or suspicious websites on older devices
Use reputable mobile security tools or safe browsing features
Consider upgrading devices that no longer receive security updates
⚠️ Why This Matters
Many people continue using older Apple devices that do not run the newest operating systems. When vulnerabilities like this remain unpatched, attackers can exploit them through malicious websites to gain unauthorized access or execute harmful code. Regular updates significantly reduce that risk.
📚 Cyber Book
Protecting Your Digital Footprint by Isaac Hungbeme
Copyright © 2026 CyberMaterial. All Rights Reserved.
Follow CyberMaterial on:
Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium