Retail Intelligence
Attacks targeting retail operations, e-commerce platforms, and point-of-sale systems.
Cl0p Claims 200 New Victims from Cleo Campaign — Threatens Mass Data Release
Cl0p adds 200 organizations to its leak site from the Cleo file transfer campaign. Threatens mass data release starting April 1 if ransoms unpaid.
Cl0p Mass Exploits Cleo File Transfer Zero-Day — 600+ Organizations Hit
Cl0p launches fourth major file transfer campaign exploiting Cleo Harmony, VLTrader, and LexiCom zero-day. Systematic data exfiltration ongoing.
Black Basta Ransomware Pivots to Microsoft Teams Social Engineering
Black Basta affiliates using Microsoft Teams messages and Quick Assist for initial access, bypassing email security controls entirely.
Major Credential Stuffing Campaign Targets Streaming Services — 500K Accounts Compromised
Massive credential stuffing campaign compromises 500,000+ streaming service accounts across three major platforms. Accounts sold on dark web.
Critical WordPress Plugin Vulnerability Affects 5 Million Sites
Unauthenticated SQL injection in a top WordPress security plugin allows database takeover. 5 million active installations at risk.
SEC Proposes Updated Cybersecurity Incident Reporting Rules for Public Companies
SEC proposes amendments requiring public companies to report material cyber incidents within 48 hours, down from 4 business days.
FBI Warns of AI-Generated Deepfake Voice Attacks Targeting Corporate Executives
FBI issues alert on rising deepfake voice attacks using AI-cloned executive voices to authorize fraudulent wire transfers. $68M stolen in Q1 2026.
Critical SonicWall SMA Gateway Auth Bypass Under Active Exploitation
Authentication bypass in SonicWall SMA 1000 series gateways allows unauthenticated admin access. Active exploitation confirmed by CISA.
Scattered Spider Member Arrested in Spain — FBI Unseals Indictment
FBI and Spanish police arrest alleged Scattered Spider member linked to MGM, Caesars, and healthcare breaches. Indictment details $100M+ in damages.