👉 What’s going on in the cyber world today?

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please Subscribe

Get BlueSleuth-Lite

🚨 Cyber Alerts

1. Microsoft Warns IRS Phish Hits 29K Users

Microsoft is cautioning users about a surge in tax-themed phishing campaigns designed to steal sensitive credentials and install malicious software. These attacks exploit the seasonal urgency of tax filing by impersonating the IRS and tax professionals to trick victims into clicking dangerous links or downloading remote access tools.

2. FBI Warns Of Signal, WhatsApp Phishing

Russian intelligence services are utilizing sophisticated phishing schemes to hijack WhatsApp and Signal accounts of high-profile targets like government officials and journalists. These operations bypass encryption by tricking users into providing verification codes or linking malicious devices, allowing attackers to read messages and impersonate victims.

3. Oracle Patches Critical Identity RCE

Oracle has issued urgent patches for a critical remote code execution vulnerability affecting its Identity Manager and Web Services Manager platforms. This security flaw, identified as CVE-2026-21992, has received a nearly perfect severity rating of 9.8 because it allows unauthenticated attackers to seize control of systems over the network.

For more alerts click here!

RSVP Here

💥 Cyber Incidents

4. Trivy GitHub Action Breach Hits CI/CD.

Aqua Security’s open-source scanner Trivy was recently compromised for the second time in a month to distribute malware designed to steal sensitive CI/CD secrets. Attackers force-pushed malicious code to numerous version tags in official GitHub Actions repositories to exfiltrate credentials and establish persistence on developer machines.

5. ‘Researcher’ Hacks Gambling Regulator.

The Malta Gaming Authority recently discovered a digital security breach and launched an immediate response to contain the threat. Early evidence suggests the unauthorized access was gained by an individual who was likely impersonating a security researcher to deceive the agency.

6. Crunchyroll Breach Claims 100GB Leak.

The Sony-owned anime streaming service Crunchyroll has reportedly experienced a major data breach involving the theft of nearly 100GB of sensitive user information on March 12, 2026. While the company has yet to officially confirm the incident, the leak is believed to have originated from a malware infection on a third-party employee’s system at the outsourcing firm Telus.

For more incidents click here!

Claim Your Workspace

📢 Cyber News

7. Tycoon 2FA Still Active After Takedown

Tycoon 2FA remains a dominant phishing-as-a-service platform that effectively bypasses multi-factor authentication to compromise thousands of organizations globally. Despite a significant international law enforcement operation led by Europol and Microsoft to seize its infrastructure, the service has rapidly recovered to its previous activity levels.

8. 3 Men Charged In AI Smuggling Plot

Federal authorities have charged a senior vice president from Super Micro Computer and two associates with conspiring to smuggle over 2 billion dollars worth of high-performance servers to China. The indictment alleges the group bypassed U.S. export controls on advanced Nvidia AI chips by using falsified documents and a pass-through company to hide the true destination of the equipment.

9. Operation Alice Dismantles 373K Sites

Operation Alice successfully dismantled a massive dark web network consisting of over 373,000 fraudulent sites designed to lure and expose individuals seeking child sexual abuse material. This international law enforcement effort identified a primary operator in China and led to the seizure of over 100 servers used to facilitate this vast criminal infrastructure.

For more news click here!

Get Help

📈Cyber Stocks

Cybersecurity stocks began the week with a mixed but stabilizing tone as broader technology markets showed signs of consolidation after recent volatility.

• Okta closed near ~84–86 dollars and was relatively flat, as identity security stocks continued consolidating after prior declines.

• Fortinet closed near ~84–85 dollars and was modestly higher, supported by steady demand in network and SASE-driven security offerings.

• Check Point Software Technologies closed near ~164–166 dollars and held steady, with its more defensive positioning continuing to provide stability.

• SentinelOne traded near ~13–14 dollars and was slightly higher, showing tentative recovery within AI-driven endpoint security names.

• CrowdStrike ended near ~412–415 dollars and was modestly higher, with endpoint security names benefiting from stabilization across high-growth software.

💡 Cyber Tip

🔐 FBI Warns of WhatsApp & Signal Phishing Attacks

Hackers are targeting WhatsApp and Signal users with phishing scams that trick people into sharing verification codes or linking rogue devices. These attacks don’t break encryption, but instead exploit trust to take over accounts, read messages, and impersonate victims.

🛠️ What You Should Do

• Never share verification codes or PINs with anyone

• Do not click on unexpected links or scan unknown QR codes

• Regularly check and remove unknown linked devices in app settings

• Be cautious of messages claiming to be from “support” or security teams

⚠️ Why This Matters
Once attackers gain access, they can monitor conversations and impersonate you to target others. This can lead to further phishing, data theft, and loss of trust across personal and professional networks.

Visit BookClub

📚 Cyber Book

The Parents Guide for Roblox by The Roblox Expert

Get Book

Copyright © 2026 CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium