In the past 48 hours, responders tracked macOS infostealer lures and a ransomware decryptor weakness, while regulators opened probes into UK mobile outages and Seoul investigators intensified action over Coupang. Major breach disclosures include 700Credit impacts, alongside React2Shell/KEV patch pressure. Enforcement operations targeted SIM and laundering networks. Consumer risks rose from exposed AI imagery, fiction-app records leaks, and fake apps.

This 48-hour DFM roundup tracks global cyber risk across DFIR, investigations, major incidents, exploitation and governance. Highlights include government email compromise, large-scale consumer breach fallout, OT and Windows patch triage, and enforcement actions disrupting hostile infrastructure. The meta theme is evidence readiness: deception telemetry, standardized baselines, supplier controls and rapid remediation are now inseparable from incident response and regulatory defensibility for teams.

Ransomware, supply-chain breaches and zero-day exploits dominate this 48-hour DFIR roundup. Hospitals, telecoms and e-commerce platforms face data theft, while regulators tighten data-sovereignty and patching expectations in Europe and India. New Windows and React vulnerabilities, AT&T’s dark web fallout and fresh law-enforcement advisories underscore why robust logging, rapid patching and vendor risk management remain non-negotiable for security and leadership teams.

The latest 48-hour DFM cybersecurity roundup highlights major breaches, active zero-day exploitation and rising regulatory pressure across global sectors. Key developments include the Coupang megabreach, React2Shell exploitation, Android emergency patches, strengthened G7 incident-response expectations and new NIS2-driven compliance duties. DFIR teams face escalating operational, legal and supply-chain risks as attackers refine extortion tactics and exploit software weaknesses.

Over the past 48 hours, DFIR teams have faced escalating ransomware, supply-chain breaches and state-backed backdoors, while regulators and law enforcement push back with major takedowns and new AI-OT guidance. From European crypto-fraud raids to Asia-Pacific “digital arrest” scams and North American data leaks, the roundup tracks evolving attacker playbooks and practical defensive priorities for security leaders and incident responders.