Weekly Recap
Weekly Cybersecurity Recap - 24 March 2025
This Week in Cybersecurity: Phishing, Ransomware, and a $32B Acquisition
Weekly Cybersecurity Recap - 6 April 2026
Major Vulnerabilities, Exploits and Industry Updates
By Paratus
Marketing Team
01 / Blog Article
Weekly Cybersecurity Recap - 6 April 2026
Introduction
The past week’s cybersecurity landscape was marked by large-scale financial theft, escalating supply chain compromises, and active exploitation of critical vulnerabilities. From a sophisticated nation-state operation resulting in a $285 million loss to widespread abuse of open-source ecosystems, attackers are increasingly leveraging both technical and human vulnerabilities to maximize impact.
At the same time, the rise of AI-powered phishing and the growing dependence on interconnected software components are amplifying risk across industries. These developments highlight the urgent need for stronger supply chain security, proactive threat detection, and greater awareness of evolving attack techniques.
Major Breaches and Threat Campaigns
$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation
The massive $285 million theft from Drift has been attributed to a highly coordinated campaign carried out over several months. The operation relied heavily on social engineering tactics, demonstrating how human factors remain a critical weak point.
Beginning in late 2025, the attackers methodically built access and trust before executing the final breach, underscoring the persistence and sophistication of nation-state threat actors.
React2Shell Exploited in Large-Scale Credential Harvesting Campaign
Attackers are actively exploiting the React2Shell vulnerability to compromise vulnerable Next.js applications and execute arbitrary code.
Once inside, automated tools are used to harvest credentials, cloud tokens, and sensitive data at scale, with hundreds of systems already impacted and thousands of files exfiltrated.
Critical Vulnerabilities and Exploits
Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS
Fortinet has issued emergency patches for a critical vulnerability that allows attackers to bypass authentication and escalate privileges.
Given that the flaw is already being exploited in the wild, organizations using FortiClient EMS must prioritize patching to prevent unauthorized access and potential compromise.
Supply Chain and Open Source Risks
36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants
Researchers identified 36 malicious npm packages disguised as legitimate plugins that exploit Redis and PostgreSQL systems.
These packages enable attackers to deploy reverse shells, steal credentials, and establish long-term persistence within compromised environments.
Claude Source Code Leak Highlights Big Supply Chain Missteps
A series of recent incidents, including the accidental exposure of Claude source code, highlights systemic weaknesses in software supply chains.
Combined with attacks targeting widely used open-source tools, these events underscore how internal missteps can create high-impact security risks.
Mercor Breach Linked to LiteLLM Supply-Chain Attack
The Mercor breach was traced back to compromised versions of LiteLLM, a key integration layer in many AI systems.
Because LiteLLM connects multiple applications and LLM providers, the attack created a high-leverage entry point, enabling widespread credential theft across organizations.
Regional and Industry Insights
UAE alerts public: AI phishing scams now behind 90% of cyber breaches
Authorities in the UAE have warned that AI-driven phishing attacks are now responsible for the majority of cyber incidents.
These campaigns rely on increasingly convincing fake communications to trick users into revealing sensitive information, making user awareness more critical than ever.
Government agencies see cyber threats as major barrier to tech improvements
Government organizations are increasingly recognizing cybersecurity as a major hurdle to digital transformation.
As threats grow more complex, agencies are prioritizing security investments to ensure modernization efforts do not introduce new vulnerabilities.
Closing Insight
From nation-state campaigns and large-scale exploitation to supply chain compromises and AI-driven phishing, the threat landscape continues to evolve rapidly. Organizations must strengthen defenses across people, processes, and technology to keep pace with increasingly sophisticated adversaries.
Weekly Recap
Weekly Recap
Weekly Cybersecurity Recap - 7 April 2025
AI Weaknesses, Airport Ransomware, Cloud Gaps & Phishing PhaaS
Weekly Recap
Weekly Cybersecurity Recap - 14 April 2025
Fake Apps, Data Leaks, Ransomware Tactics & WordPress Plugin Exploits
Weekly Recap
Weekly Cybersecurity Recap - 21 April 2025
Multi-stage malware, GPS spoofing, ClickFix campaigns, and Shadow AI adoption—this week’s cybersecurity recap has it all
Weekly Recap
Weekly Cybersecurity Recap - 28 April 2025
QR code scams, GenAI hallucinations, mobile spyware, and double extortion — it’s another action-packed week in cybersecurity.
Weekly Recap
Weekly Cybersecurity Recap - 5 May 2025
TikTok fined €530M, hackers breach CNI, and top 2025 cyber threats – your weekly cyber update
Weekly Recap
Weekly Cybersecurity Recap - 12 May 2025
FreeDrain Crypto Phishing, Qilin Ransomware Surge & Google’s AI Moves
Weekly Recap
Weekly Cybersecurity Recap - 19 May 2025
Botnets, Bounties, and the AI Balancing Act
Weekly Recap
Weekly Cybersecurity Recap - 26 May 2025
Fake Installers, Ransomware Fallout & Malicious Extensions: Last Week’s Cyber Recap
Weekly Recap
Weekly Cybersecurity Recap - 2 June 2025
Malware campaigns, breaches, and the $111B cloud security boom
Weekly Recap
Weekly Cybersecurity Recap - 9 June 2025
From a massive AT&T data leak to new macOS malware and a takedown of a notorious carding site - here's what happened last week.
Weekly Recap
Weekly Cybersecurity Recap - 16 June 2025
Discord Malware, Salesforce Risks, SME Pressures and more
Weekly Recap
Weekly Cybersecurity Recap - 23 June 2025
Cybercriminal Innovation, Record-Breaking DDoS, and Retail Breaches - What You Missed Last Week
Weekly Recap
Weekly Cybersecurity Recap - 30 June 2025
Emerging Quantum Threats, UAE Cyber Trends, and Critical Exploits – Last Week’s Cybersecurity Recap
Weekly Recap
Weekly Cybersecurity Recap - 7 July 2025
Weekly Cybersecurity Recap: AI-Enhanced Phishing, Android Fraud, and Emerging Risks
Weekly Recap
Weekly Cybersecurity Recap - 14 July 2025
Weekly Cybersecurity Recap: Human Weakness, AI Risks, and Critical Vulnerabilities
Weekly Recap
Weekly Cybersecurity Recap - 11 August 2025
Weekly Cybersecurity Recap: AI-Powered Scams, Vault Flaws, Airline Breaches & GPT-5 Jailbreaks
Weekly Recap
Weekly Cybersecurity Recap - 25 August 2025
Weekly Cybersecurity Recap: Wi-Fi Breaches, AI Risks, and Major Exploits
Weekly Recap
Weekly Cybersecurity Recap - 1 September 2025
AI Ransomware, WhatsApp Zero-Click Exploit, and Salesforce Credential Theft
Weekly Recap
Weekly Cybersecurity Recap - 8 September 2025
AI-powered Threats, Global Partnerships, Zero-Day Exploits & Record DDoS Attack
Weekly Recap
Weekly Cybersecurity Recap - 15 September 2025
npm Breach, Zero-Days, AI Jailbreaks and More
Weekly Recap
Weekly Cybersecurity Recap - 22 September 2025
AI-powered threats, airport cyberattacks, phishing surges & critical vulnerabilities
Weekly Recap
Weekly Cybersecurity Recap - 6 October 2025
Oracle Extortion, Red Hat Breach, and AI Browser Exploits
Weekly Recap
Weekly Cybersecurity Recap - 13 October 2025
New Malware Strains, Supply Chain Risks, and Massive Breaches
Weekly Recap
Weekly Cybersecurity Recap - 20 October 2025
Smart Contract Malware, Corporate Breaches, and Ransomware Disruptions
Weekly Recap
Weekly Cybersecurity Recap - 27 October 2025
GlassWorm Supply Chain Attack, WSUS Exploited, and a $2.5B JLR Fallout
Weekly Recap
Weekly Cybersecurity Recap - 3 November 2025
AI Advances, Cloud Disruptions, and Global Threat Campaigns
Weekly Recap
Weekly Cybersecurity Recap - 17 November 2025
AI Framework Flaws, Mass Supply Chain Abuse, and Rising Ransomware Complexity
Weekly Recap
Weekly Cybersecurity Recap - 24 November 2025
Cloud Outages, AI Botnets, 7-Zip Exploits, and Rising Gulf Security Spend
Weekly Recap
Weekly Cybersecurity Recap - 8 December 2025
AI Risks, RCE Threats, Supply-Chain Abuse & Global Outages
Weekly Recap
Weekly Cybersecurity Recap - 15 December 2025
Zero-Days, AI Risk Warnings, and Escalating Exploits
Weekly Recap
Weekly Cybersecurity Recap - 19 January 2026
Malware Innovation, Zero-Days, and Cloud-Focused Threats
Weekly Recap
Weekly Cybersecurity Recap - 26 January 2026
Identity Attacks, Exploited Trust, and Emerging Global Defenses
Weekly Recap
Weekly Cybersecurity Recap - 2 February 2026
Cyber Risks Escalate Across Industry, Infrastructure, and AI as Attack Surfaces Expand
Weekly Recap
Weekly Cybersecurity Recap - 9 February 2026
Credential Theft, Supply Chain Risks, and Critical Exploits
Weekly Recap
Weekly Cybersecurity Recap - 16 February 2026
From nation-state activity targeting defense infrastructure to malicious browser extensions with tens of millions of downloads, this week’s events highlight how digital risk continues to expand across ecosystems, platforms, and sectors.
Weekly Recap
Weekly Cybersecurity Recap - 23 February 2026
Cyber threats are accelerating across both national infrastructure and enterprise environments. While governments strengthen defensive posture against organized cyberattacks, ransomware operators and AI-enabled adversaries continue to compress response timelines and expand sector targeting.
Weekly Recap
Weekly Cybersecurity Recap - 2 March 2026
This week’s cybersecurity landscape highlights long-term zero-day exploitation, widespread infrastructure compromise, AI-assisted attacks, and escalating credential theft.
Weekly Recap
Weekly Cybersecurity Recap - 9 March 2026
These developments underscore the urgency for organizations to strengthen defenses across identity, infrastructure, and emerging technologies.
Weekly Recap
Weekly Cybersecurity Recap - 16 March 2026
From destructive malware warnings and supply-chain attacks targeting developer ecosystems to vulnerabilities in widely used enterprise platforms, organizations are facing a rapidly evolving threat landscape.
Weekly Recap
Weekly Cybersecurity Recap - 23 March 2026
The latest cybersecurity developments highlight a surge in critical vulnerabilities, targeted ransomware campaigns, and evolving threats tied to remote work and artificial intelligence.
Weekly Recap
Weekly Cybersecurity Recap - 30 March 2026
The past week highlights a cybersecurity landscape shaped by active exploitation, evolving phishing techniques, and growing concerns around artificial intelligence.
Protect your business with Paratus
Ready to get started? Fill out the form below and we'll get back to you in no time!
risk decrease
96%
Risks from dealing with clients and traders decrease by 96%