Industry & Policy

Weekly Roundup: Sub-Hour Ransomware, AI Dominance at RSA, and Multi-Channel Malware Campaigns

This week's developments span conference insights and active threats: RSAC 2026 highlighted AI's growing role in cybersecurity amid geopolitical tensions, while researchers documented increasingly rapid ransomware attacks and sophisticated malware campaigns targeting banking credentials and messaging platforms.

Apr 3, 2026Dark Reading, Infosecurity Magazine

ransomwaremalwareartificial-intelligence

🏴Akira

🇺🇸Meta Platforms🇺🇸Reddit

highIndustry & Policy

Healthcare Under Siege: LatAm Government Attacks Rise as CNI Faces Million-Dollar Downtime Costs

Healthcare systems must rehearse ransomware response as Latin American governments experience surging cyberattacks targeting critical sectors. Critical infrastructure providers face potential £5 million downtime costs from operational technology attacks.

Apr 2, 2026Dark Reading, Infosecurity Magazine

ransomwarehealthcarelatin-america

🏴Play

🇺🇸Google

informationalIndustry & Policy

Environmental Policy Decision Raises Questions for Critical Infrastructure Security

The U.S. has granted oil industry exemptions from certain environmental protections citing national security concerns. This highlights ongoing tensions between operational security requirements and regulatory compliance in critical infrastructure sectors.

Apr 1, 2026Hacker News (filtered)

critical-infrastructureenergy-sectorregulatory-policy

highIndustry & Policy

Iranian APTs Blur Criminal Lines While AI Security Gaps Widen

Iranian state-sponsored groups are blurring lines with cybercriminal activities through pseudo-ransomware targeting US organizations, while AI security gaps emerge across Google Vertex AI and ChatGPT platforms. Manufacturing remains heavily compromised with 80% of UK facilities hit by cyber incidents in the past year.

Apr 1, 2026Dark Reading, Infosecurity Magazine

iranian-aptsai-securitycloud-security

🇺🇸Google

highIndustry & Policy

F5 BIG-IP RCE Under Active Exploitation, Telegram Disputes Critical Flaw Claims

A previously disclosed F5 BIG-IP denial-of-service vulnerability has been reclassified as remote code execution and is now under active exploitation. Meanwhile, Telegram disputes claims of a critical no-click vulnerability despite a 9.8 CVSS score assignment.

Mar 31, 2026Dark Reading, Infosecurity Magazine

f5big-ipremote-code-execution

🇦🇪Telegram

mediumIndustry & Policy

Security Researcher Argues Vulnerability Research Industry Faces Existential Crisis

A security researcher has published a detailed critique arguing that the vulnerability research industry faces fundamental structural problems that threaten research quality and long-term sustainability. The analysis examines issues with current research incentives, disclosure practices, and industry dynamics.

Mar 31, 2026Hacker News (filtered)

vulnerability-researchbug-bountysecurity-industry

criticalIndustry & Policy

Weekly Threat Brief: March 22-29, 2026 — Supply Chain Warfare and Nation-State Escalation

TeamPCP orchestrated a sophisticated supply chain campaign compromising PyPI packages including LiteLLM and Trivy. Iranian actors breached FBI Director Kash Patel's Gmail while critical vulnerabilities in Cisco, NetScaler, and Quest KACE systems face active exploitation.

Mar 29, 2026Black Temple Weekly Digest

weekly-roundupthreat-intelligencesupply-chain-attacks

🏴ShinyHunters

🇺🇸Meta Platforms🇦🇪Telegram🇨🇳TP-Link🇨🇳TikTok🇺🇸Google🇺🇸Oracle Data Cloud🇨🇳Huawei

highIndustry & Policy

Industry Roundup: Google's 2029 Quantum Deadline, EtherRAT Smart Contract C2, and Oracle WebLogic Under Attack

Google announced a 2029 deadline for post-quantum cryptography migration while attackers rapidly weaponized a critical Oracle WebLogic RCE flaw. Meanwhile, EtherRAT malware demonstrates novel blockchain-based C2 techniques, and regulatory actions target Chinese crypto platforms.

Mar 27, 2026Dark Reading, Infosecurity Magazine

post-quantum-cryptographyoracle-weblogicetherrat

🇺🇸Google🇺🇸Oracle Data Cloud

mediumIndustry & Policy

RSAC 2026 Highlights: EU Leadership, AI-Driven Threats, and Industrial-Scale Identity Abuse

RSA Conference 2026 featured EU officials taking the lead on cybersecurity policy while US government participation remained minimal. Meanwhile, AI emerged as both the dominant attack vector and defensive solution, with researchers warning of industrial-scale identity exploitation campaigns.

Mar 26, 2026Dark Reading, Infosecurity Magazine

rsacartificial-intelligenceransomware

🇺🇸LinkedIn🇺🇸Near Intelligence

highIndustry & Policy

Supply Chain Attacks Surge as AI Tools Reshape Security Perimeter

Multiple supply chain campaigns are actively targeting developer tools and security software, while AI coding tools are creating new vulnerabilities in enterprise endpoints. Enterprise cybersecurity software reportedly fails 20% of the time due to poor patch management.

Mar 25, 2026Dark Reading, Infosecurity Magazine

supply-chainai-securitymalware

🇺🇸Meta Platforms

lowIndustry & Policy

Academic Study Reveals How Security Fatigue Undermines Digital Defense Postures

Researchers at University of Albany have published findings on 'security fatigue' and its impact on digital defense effectiveness. The study provides behavioral insights that could inform security awareness training and policy development.

Mar 24, 2026Hacker News (filtered)

security-fatiguehuman-factorscybersecurity-research

🇨🇳Winnti

informationalIndustry & Policy

Microsoft Promises Windows 11 Cleanup After Years of Bloatware Complaints

Microsoft is promising to clean up Windows 11 by removing ads, reducing forced Copilot integrations, and eliminating bloatware. Critics argue this represents damage control after years of increasingly intrusive practices.

Mar 24, 2026Sam Bent

windows-11microsoftbloatware