Here is the most recent Cybersecurity news for the past week:
🏥 Stryker Systems Disrupted by Global Cyberattack Medical technology giant Stryker suffered a major cyberattack that disrupted its internal Microsoft Windows environment across 61 countries, causing ordering and shipping delays for medical devices. An Iran-linked hacktivist group named Handala claimed responsibility, alleging they executed a destructive wiper attack in retaliation for geopolitical events, though Stryker states the incident is contained and there is no evidence of malware or ransomware.
🪟 Microsoft March 2026 Patch Tuesday Addresses Two Zero-Days Microsoft’s March 2026 Patch Tuesday released security updates for 79 vulnerabilities, including two publicly disclosed zero-days. The critical flaws include CVE-2026-21262, an elevation of privilege vulnerability in SQL Server that could grant attackers full administrative control, and CVE-2026-26127, a denial-of-service bug in the .NET framework that allows remote attackers to crash applications.
⚖️ LexisNexis Exfiltrated in React2Shell Cloud Breach Legal data broker LexisNexis confirmed that a threat actor known as FulcrumSec exploited a vulnerability in an unpatched React front-end (React2Shell) to access its AWS cloud environment. The attackers successfully exfiltrated approximately 2 GB of structured data, compromising millions of records and tens of thousands of customer accounts, though the company claims the exposed data was primarily legacy information.
https://diesec.com/2026/03/top-5-cybersecurity-news-stories-march-13-2026/
🚨 Critical BeyondTrust Zero-Day Exploited in Active Ransomware Campaigns CISA has issued an emergency mandate requiring federal agencies to patch a critical zero-day vulnerability (CVE-2026-1731) in BeyondTrust Remote Support. This pre-authentication remote code execution flaw allows unauthenticated attackers to execute arbitrary commands, and threat actors rapidly operationalized it in active ransomware campaigns less than two weeks after its initial disclosure.
https://www.hornetsecurity.com/en/blog/monthly-threat-report
🎣 Law Enforcement Dismantles Tycoon 2FA Phishing Platform A massive coordinated operation involving Europol, Microsoft, Proofpoint, and international law enforcement successfully disrupted Tycoon 2FA, one of the most prolific adversary-in-the-middle (AiTM) phishing-as-a-service platforms. The coalition seized over 330 control panel domains linked to the service, which was used in tens of millions of monthly phishing attacks to bypass multi-factor authentication for nearly 100,000 organizations.
https://www.hornetsecurity.com/en/blog/monthly-threat-report
