Mar 28, 2026

Email Summaries:

1. Risky Bulletin: Russia to use custom crypto-algorithm for its 5G networks
2. Russian government proposes law mandating all mobile operators to use a domestically-developed encryption algorithm NEA-7 for 5G networks.
3. Foreign algorithms like SNOW, AES, and ZUC permitted only until 2032.
4. Purpose includes impeding Ukrainian drone and missile operations that exploit mobile networks.
5. Challenges: Limited market impact as Russia accounts for only 2% of phone sales; no base station support yet; potential for vulnerabilities and foreign manufacturer influence.
6. Additional alerts: malware on Luxembourg government devices, phishing breach on Dutch police, ransomware at port of Vigo, and hack investigations including Politico.
7. Various cyber incidents and threat actor activities detailed, including ransomware, phishing, and new malware variants.
8. Privacy and technology issues include Apple’s age verification in the UK, EU investigations on social apps, banning AI-generated Wikipedia articles, and court rulings affecting Meta and YouTube.
9. Government/policy updates include Russia’s national firewall expansion, cyberattack surge in Poland, Hungarian politics spyware allegations, UK sanctions on Xinbi scam marketplace, and calls for secure AI adoption.
10. Arrests and takedowns include RedLine malware developer extradition and LeakBase admin arrest.

11. Technical reports and podcasts mentioned for further insights.

12. Hacker Newsletter #787

13. A curated weekly roundup of Hacker News favorites, Ask HN questions, classifieds, Show HN projects, coding articles, data science insights, design topics, books, productivity tools, learning resources, videos, startup news, and fun items.
14. Topics range from internet economy conferences, AI malware attack responses, programming best practices, quantum computing impacts, security tricks, to creative coding and astrophotography.
15. Includes community discussions and job market visualizations.

16. Emphasizes that technological impact is often underestimated long-term.

17. UK sanctions scam-supporting, $20B crypto marketplace Xinbi Guarantees

18. The UK sanctioned Xinbi Guarantee, a Chinese-language crypto marketplace implicated in cybercrime and human trafficking.
19. Xinbi linked to roughly $20B in transactions enabling stolen data sales, money laundering, and scam operations tied to organized crime.
20. Sanctions include seizure of UK assets tied to Xinbi.
21. Anthropic AI startup won a preliminary injunction against Pentagon’s ban.
22. EU Parliament rejected extension permitting CSAM scanning, citing privacy concerns.
23. Russian agents wiretapped Ukrainian drone manufacturer TechEx.
24. Dutch court ordered Elon Musk’s xAI Grok chatbot to cease generating sexualized nonconsensual images.
25. European Commission investigates security breach of its AWS infrastructure.
26. Dutch National Police disclosed a phishing breach with limited impact.
27. Hack of Ajax Amsterdam’s ticketing system exposed supporter data vulnerabilities.
28. Viva Ticket ransomware attack impacted major cultural institutions.
29. Luxembourg public sector malware infections resolved after patching.
30. AI-assisted breaches by threat group TeamPCP affected LiteLLM and Trivy projects.
31. Hong Kong police empowered to demand passwords under national security laws.
32. Nova Scotia Power breach caused by compromised website and malware.
33. Chinese APT Red Menshen deployed advanced BPFdoor kernel malware in telecom networks.
34. US intelligence and defense modernization efforts include AI adoption and cybersecurity enhancements.

35. North Korean hackers offering high pay for front persons; Apple provided FBI with real user email behind anonymity feature.

36. CISA warns of critical flaws affecting PTC and Langflow products | The CyberWire

37. CISA warns about critical Remote Code Execution flaw in PTC Windchill software (CVE-2026-4681); patch pending.
38. German Federal Police went to companies’ admins homes to alert them urgently.
39. CISA also warns of active exploitation of code injection vulnerability in Langflow AI framework (CVE-2026-33017).
40. Phishing and malware activity surged in Gulf countries after Iran war outbreak; attackers exploiting regional tensions.
41. Armenian national extradited to US for RedLine infostealer development, facing up to 30 years imprisonment.

42. Additional news on pro-Ukraine ransomware targeting Russians, school cyberattack in UK, FCC rules against robocalling, and anime piracy app takedown.

43. Iranian Hackers Claim Hack of FBI Director’s Email Accounts

44. Pro-Iranian hackers claim compromise of FBI Director Kash Patel’s email accounts.
45. OpenAI launches a bug bounty program focused on preventing abuse and safety risks.
46. TP-Link issued patches for serious router vulnerabilities.
47. Other news includes Palo Alto recruiter phishing scam, anti-deepfake AI chip, Google’s quantum encryption timeline for 2029, and multiple research and patch announcements.

48. Extensive coverage of cybersecurity conference RSAC 2026 announcements.

49. Repeat of the first Risky Bulletin about Russia’s 5G crypto-algorithm plus further details

50. Reiterates Russian proposed legislation for NEA-7 custom 5G encryption.
51. Many challenges discussed: limited phone market share, no tower equipment support yet, potential security weaknesses.
52. Updates on ongoing cyber incidents: Luxembourg malware outbreak, Dutch police phishing, Ajax data breach, Puerto Rico’s Department of Transportation cyberattack, Vigo port ransomware.
53. Intel on Politico possible hack involving recorded EU official call.
54. Highlight of LiteLLM Python AI package compromise.
55. Various cyber-espionage campaigns, new malware variants, ransomware strain developments, phishing scams targeting TikTok business accounts.
56. Government actions include expanded Russian firewall bandwidth, political spyware allegations in Hungary, UK promoting secure AI code generation using genAI.
57. Arrests and trial outcomes for cybercriminals like RedLine developer and TA551 botnet operator.
58. Tech updates include Apple iOS/macOS patches, TP-Link fixes, Cisco semiannual patches.

Summary:

These six emails provide a comprehensive snapshot of global cybersecurity developments as of late March 2026, including government cyber legislation, significant security incidents and breaches, malware and ransomware campaigns, legislative and judicial actions affecting AI and privacy, notable arrests in cybercrime cases, and emerging vulnerabilities with urgent patches. They cover geopolitical cyber conflicts involving Russia, Ukraine, Iran, China, and Western countries, as well as ongoing challenges in privacy, AI security, and cyber defense modernization efforts.

Stay Well!