Cybersecurity News | Daily Recap [14 Mar 2026]

hendryadrian.com

hendryadrian.com

Threats & Campaigns

• The Storm-2561 group used SEO poisoning and fake enterprise VPN installers to deploy signed trojans, sideload loaders and the Hyrax infostealer to harvest corporate credentials and VPN configs – Storm-2561 Campaign, Storm-2561 Disclosure
• The AppsFlyer Web SDK was hijacked to deliver obfuscated JavaScript that intercepted and replaced cryptocurrency wallet addresses to divert funds from thousands of sites between Mar 9–11 – AppsFlyer SDK
• The FBI seeks victims who installed eight Steam games (May 2024–Jan 2026) that distributed malware such as Vidar/stealers to help trace crypto transactions and account compromises – Steam Malware
• Chinese-linked actors targeted Southeast Asian militaries with AppleChris and MemFun malware in regional espionage operations – China Malware
• Poland’s National Centre for Nuclear Research blocked a cyberattack on its IT infrastructure with indicators possibly pointing to Iran and APT44, reactor operations unaffected – Poland NCBJ
• The DOJ alleges an incident responder secretly aided ALPHV/BlackCat during ransom negotiations, leaking negotiation details and prompting criminal charges and industry bans – BlackCat Insider
• INTERPOL coordinated a global operation that dismantled 45,000 malicious IPs/servers, led to 94 arrests and seized 212 devices while India’s CBI disrupted a Pyypl-linked laundering syndicate – INTERPOL Takedown
• SecurityWeek roundup highlights rapid, vulnerability-driven cloud attacks, exploitation of N8n, the rise of AI-generated Slopoly malware, and activity by groups like ShinyHunters – Other News

Vulnerabilities & Patches

• A critical unauthenticated remote flaw CVE-2026-23813 in Aruba/HPE AOS-CX switches allows admin password resets and auth bypass; patches released and orgs should restrict management access and apply updates immediately – HPE AOS-CX

Product & Platform Issues

• Some Samsung PCs running Windows 11 experienced an issue preventing access to the C: drive, prompting Microsoft investigation and vendor coordination – Samsung C: Issue
• Microsoft is investigating multiple classic Outlook sync and connection bugs (EWS group creation failures, Gmail/Yahoo errors 0x800CCC0F/0x80070057) with workarounds while preparing REST-based fixes – Outlook Bugs
• Guidance on protecting data during hypervisor migration highlights risks and best practices when moving from VMware to alternative platforms to preserve confidentiality and integrity – Hypervisor Migration

Policy & Regulation

• New York will require community water and wastewater systems serving > 3,300 people to meet cybersecurity rules by 2027 (training, incident response, reporting) with grants up to $100,000 for upgrades in response to nation-state threats like Volt Typhoon – NY Water Rules
• The European Council’s AI Act proposal adds a ban on AI nudification tools and tighter data-processing rules for high-risk systems following public incidents and will enter negotiations with the Parliament – AI Nudification Ban
• Meta will end support for Instagram end-to-end encrypted chats after May 8, 2026, and provide users guidance to download messages and media before the change amid regulatory and safety debates – Instagram E2EE

Workforce & Diversity

• Women in cybersecurity call for concrete actions — recruitment, mentorship, sponsorship, scholarships and inclusion in leadership and projects — to tackle bias and burnout and strengthen the workforce – Women in Cyber

Breaches & Data Loss

• Starbucks disclosed a breach affecting nearly 900 employees after Partner Central accounts were accessed via phished credentials; affected staff offered identity protection and law enforcement notified – Starbucks Breach

Cybersecurity News | Daily Recap – hendryadrian.com