👉 What's going on in the cyber world today?

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

First time seeing this? Please Subscribe

Get BlueSleuth-Lite

🚨 Cyber Alerts

1. Russian CTRL Toolkit Hijacks RDP Access

Cybersecurity researchers have identified a Russian-origin remote access toolkit named CTRL that spreads through malicious Windows shortcut files disguised as private key folders. This sophisticated .NET-based malware employs a multi-stage infection process to establish persistence, hijack desktop sessions, and harvest user credentials through deceptive phishing interfaces.

2. Apple Warns Old iPhones of Web Exploits

Apple is actively sending lock screen alerts to users of older iPhones and iPads to warn them about active web-based attacks. These notifications urge individuals to install critical security updates immediately to protect their devices from known exploits.

3. China Linked Clusters Target SE Asia Govt

Three Chinese-aligned threat groups launched a sophisticated, well-funded campaign against a government entity in Southeast Asia throughout much of 2025. This coordinated effort utilized an extensive array of custom malware and remote access trojans to infiltrate and maintain control over the target’s infrastructure.

For more alerts click here!

Subscribe Now

💥 Cyber Incidents

4. Iran Linked Hackers Breach FBI Email

Iranian-linked hackers successfully breached the personal email account of FBI Director Kash Patel, leaking a collection of photos and older documents online. Federal officials confirmed the intrusion but noted the data was historical in nature and did not contain sensitive government information.

5. EU Investigates Cyberattack on Websites

The European Commission is currently investigating a cyberattack on the Europa.eu platform that may have resulted in the theft of some data. Although the breach affected the cloud infrastructure used by various EU institutions, the Commission stated that the incident has been contained and its internal systems remain secure.

6. Ransomware Hits Goodwill Grand Rapids

Goodwill of Greater Grand Rapids is currently investigating a cybersecurity breach that has disrupted its internal network and retail operations. While the organization is working with law enforcement to restore its systems, local stores remain open but are restricted to cash-only transactions for the time being.

For more incidents click here!

Claim Your Workspace

📢 Cyber News

7. Spotify Seeks $300M From Anna’s Archive

Spotify and several major record labels have filed for a 322 million dollar default judgment against the shadow library Anna’s Archive following its failure to respond to a lawsuit regarding the scraping of millions of music files. The legal action seeks both significant financial damages and a permanent injunction to remove the site from the internet by targeting its domain and hosting providers.

8. CISA Chief Warns Shutdown Raises Cyber Risks

Acting Director Nick Andersen recently warned that the ongoing Department of Homeland Security shutdown is causing dangerous security gaps as the agency operates with a severely depleted workforce. With critical proactive measures paused and staff resigning, Andersen cautioned that the accumulating systemic risk leaves national infrastructure increasingly vulnerable to sophisticated adversaries.

9. India To Ban Hikvision TP Link CCTV

The Indian government is implementing a ban on internet-connected CCTV cameras from Chinese manufacturers like Hikvision, Dahua, and TP-Link starting April 1, 2026. This move enforces strict cybersecurity certifications and chipset disclosures to eliminate potential national security risks and foreign espionage vulnerabilities in the country’s surveillance infrastructure.

For more news click here!

Get Help

📈Cyber Stocks

Cybersecurity stocks were mixed to slightly higher on Friday, 27 March 2026, even as broader U.S. markets faced pressure from geopolitical tensions and rising oil prices.The sector showed relative resilience, with selective gains across endpoint, cloud, and identity security names.

• Zscaler closed at 141.50 dollars and was higher, with the stock recovering despite continued caution around premium cloud security valuations.

• Fortinet closed at 81.03 dollars and was higher, showing relative stability as investors balanced macro pressure against ongoing network and platform security demand.

• Check Point Software Technologies closed at 142.82 dollars and was higher, with its more defensive positioning helping it hold up better during the broader tech selloff.

• SentinelOne closed at 13.40 dollars and was slightly higher, indicating selective buying in endpoint security despite the risk-off market tone.

• Rapid7 closed at 5.70 dollars and was higher, outperforming the broader market even as mid-cap software names remained volatile.

💡 Cyber Tip

🤖 Update Now: Defending Against “DarkSword” and “Coruna” Exploits

Apple is currently alerting users of older devices to urgent security risks posed by professional-grade exploit kits that can compromise your phone through malicious websites. To stay safe, you must prioritize software updates or activate specialized defense modes to block these sophisticated “Operation Triangulation” evolutions.

🛠️ What You Should Do

• Update Immediately: Go to Settings > General > Software Update and install the latest available version for your device.

• Turn on Lockdown Mode: If your device is too old for the latest OS, enable Lockdown Mode in your Privacy & Security settings to restrict vulnerable web features.

• Browse Cautiously: Avoid clicking links from unknown SMS or email senders, as these exploits are often delivered via malicious URLs.

• Set to Auto-Update: Toggle on Automatic Updates to ensure your device receives “Rapid Security Responses” without manual intervention.

⚠️ Why This Matters

These exploit kits, once reserved for elite state-sponsored hackers, are now widely available to common cybercriminals, significantly increasing the risk of mass malware infections. By staying updated, you close the “attack surface” that these professional frameworks rely on to steal your private data or monitor your activity.

Visit BookClub

📚 Cyber Book

Smart betting secret and scam expose by OG FSO

Get Book!

Copyright © 2026 CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium