Thursday, April 9 2026

News Centre

Here you can access the latest 48hr Global News Roundups from DFM

We scour the internet to find the latest stories relating to:

DFIR, Cyber Investigations, Major Cyber Incidents, Exploits & Threat Intelligence, Law Enforcement, Policy, Standards & Compliance and Consumer App Data Leaks

We also provide an Editorial Perspective and a Reference List for further reading.

NEWS ROUNDUP – 25th February 2026

25/02/2026

Australia’s ACSC released Azul, an open-source malware analysis tool, as defenders tracked vishing-driven access at Optimizely and extortion claims hitting Wynn Resorts and Air Côte d’Ivoire. Researchers detailed a GitHub Copilot prompt-injection chain and an NPM supply-chain campaign dubbed Sandworm_Mode. Spain arrested Anonymous Fénix suspects, while U.S. Treasury sanctioned a bulletproof hosting provider. NIST updated CSF guidance; CarGurus disclosed breach.

NEWS ROUNDUP – 23rd February 2026

23/02/2026

Ransomware disrupted University of Mississippi Medical Center clinics while Japan’s Advantest investigated a network intrusion. CISA warned BeyondTrust CVE-2026-1731 is exploited in ransomware, and a critical Grandstream VoIP flaw enables root RCE. PayPal reported customer-data exposure from an application error, and an Android AI media editor leaked millions of files, alongside indictments for ATM jackpotting.

NEWS ROUNDUP – 20th February 2026

20/02/2026

Attackers are cutting response windows: Unit 42 cites cases reaching data exfiltration in 72 minutes. Figure Technology Solutions confirmed a breach tied to leaked user records, while Meriden, Connecticut reported ransomware disruption. Mandiant warned of active exploitation of a Dell RecoverPoint for VMs zero-day, and the UK ICO prevailed in the DSG Retail appeal, sharpening expectations for “appropriate security” practice.

NEWS ROUNDUP – 18th February 2026

18/02/2026

China-linked actors exploited a Dell RecoverPoint zero-day for 18 months, while CISA added an actively exploited Chrome flaw to its KEV catalog. Australia’s YouX faced a major data-leak claim, and passport scans from Abu Dhabi Finance Week were exposed via a vendor server. Police arrested a Phobos ransomware suspect in Poland, as the UK launched a business cyber-hygiene campaign nationwide.

NEWS ROUNDUP – 16th February 2026

16/02/2026

Google patched an in-the-wild Chrome zero-day while GreyNoise tied most Ivanti RCE probing to a single bulletproof-hosted IP. Canada Goose investigated a 600k-record leak claim as Dutch telco Odido faced exposure fallout. Police in Thailand and India targeted mule accounts, and the EDPB addressed spyware abuse. PCI SSC opened comments and CERT-EU issued a CTI framework for EU institutions today.

NEWS ROUNDUP – 13th February 2026

13/02/2026

Over the past 48 hours, CISA added four exploited vulnerabilities to the KEV catalog and issued an ICS advisory on Siemens SINEC NMS. Odido confirmed a customer data leak, while SmarterTools disclosed ransomware after an auth-bypass on an unpatched VM. Researchers flagged active exploitation of a critical BeyondTrust RCE and reported nation-state use of Google Gemini for campaigns this week.

NEWS ROUNDUP – 11th February 2026

11/02/2026

Active exploitation of SolarWinds Web Help Desk led to Velociraptor deployment, while the European Commission investigated a breach in its mobile device management environment. Singapore detailed a coordinated telco response to UNC3886. CISA added six known-exploited vulnerabilities, and Microsoft patched six exploited zero-days. BeyondTrust disclosed an unauthenticated RCE. Courts sentenced a fugitive tied to a $73M pig-butchering scheme in absentia.

NEWS ROUNDUP – 9th February 2026

09/02/2026

European Commission contained suspicious activity against its device management platform, while reports highlighted CERT-EU indicators on infrastructure. Microsoft warned of active exploitation of SolarWinds Web Help Desk flaws. Singapore’s telco sector investigated an alleged state-linked intrusion as Winter Olympics services faced disruption attempts. UK authorities examined cyber-sanctions compliance and NIS bill progress, and Substack and Coupang disclosed user data exposure.

NEWS ROUNDUP – 6th February 2026

06/02/2026

CISA ordered U.S. agencies to remove unsupported edge devices as active exploitation of a GitLab flaw continues. Romania’s Conpet reported a cyberattack disrupting systems, while Flickr warned of member data exposure via a third-party email provider. The UK ICO opened investigations into X and xAI over Grok, as the European Commission advanced a cybersecurity package and NIST sought draft comments.

Advertisements

Magazine Issues

DFM 57 Front Cover - Thumbnail

Issue 57 – Out Now

By admin |
DFM 56 Front Cover - Thumbnail

Back Issue 56

By admin |
DFM 55 Front Cover - Thumbnail

Back Issue 55

By admin |
dfm-54

Back Issue 54

By admin |
dfm-53

Back Issue 53

By admin |
dfm-52

Back Issue 52

By admin |
dfm-51

Back Issue 51

By admin |
dfm-50

Back Issue 50

By admin |
dfm-49

Back Issue 49

By admin |
dfm-48

Back Issue 48

By admin |