Microsoft fixed two disclosed zero-days in March Patch Tuesday, SAP shipped critical NetWeaver and FS-QUO fixes, and Dutch agencies warned that Russia-backed operators are hijacking Signal and WhatsApp accounts. Reuters also reported a customer-data breach at Loblaw, while ENISA published package-manager security guidance and the European Commission updated AI Act standardisation FAQs for high-risk systems across Europe and North America.

Australia warned on Cisco SD-WAN exploitation, U.S. investigators examined a suspected China-linked FBI network breach, LexisNexis and TriZetto disclosed major data exposures, and authorities disrupted LeakBase and Tycoon 2FA. The roundup also tracks Google’s 90 zero-day tally for 2025, White House cyber strategy priorities, and European Commission guidance for applying the Cyber Resilience Act across health, government, telecom, and sectors.

CISA added five newly exploited vulnerabilities to KEV as Cisco warned more Catalyst SD-WAN flaws are under active attack. Europol seized LeakBase and disrupted Tycoon 2FA, while Passaic County reported a malware outage and LexisNexis confirmed a data breach. Google challenged geofence warrants, and draft Cyber Resilience Act guidance signalled tougher product-security expectations for vendors and defenders globally this week.

UK NCSC urged organisations to tighten monitoring amid Middle East spillover risks, while Cloudflare reported session-token abuse. AkzoNobel confirmed a breach at a U.S. site after an extortion leak claim, and Russian government portals suffered a multi-vector DDoS. CISA warned VMware Aria Operations is being exploited, and California’s privacy regulator fined PlayOn Sports $1.1M. Supreme Court heard geofence warrant challenge.

CISA updated hunting guidance for RESURGE malware lingering on Ivanti appliances, while Juniper warned of a critical PTX router takeover flaw. Reuters tracked cyber operations hitting Iranian apps and sites after strikes, as Sophos monitored Iran-linked hacktivist claims. In the US, UH Cancer Center reported SSN exposure affecting up to 1.15 million people. Substack disclosed stolen emails and phone numbers.