Mar 10, 2026

Email 1:

Subject: Risky Bulletin: New White House EO prioritizes fight against scams and cybercrimes

Sender: risky-biz@ghost.io

Summary:

– President Trump signed a new executive order directing federal agencies to crack down on foreign scam operations and cybercrimes such as business email compromise, investment fraud, ransomware, phishing, and sextortion.

– The Attorney General is tasked with prioritizing investigations into cyberfraud and establishing victim restoration programs.

– The State Department will pressure foreign governments harboring cybercriminals.

– The National Coordination Center will create a dedicated cell to target the largest criminal organizations involved.

– The new Cyber Strategy promotes offensive cyber operations and public-private partnerships to defend America, incorporating AI and modern cybersecurity practices.

– Several recent cyber incidents were reported: a hack of FBI wiretap networks by Chinese hackers, ransomware attack driving Romania’s largest meat exporter to insolvency, spyware infection of an Italian journalist, crypto theft from Solv Protocol, and a ransomware attack on Passaic County, NJ.

– Meta faces class-action lawsuit over privacy issues with Ray-Ban smart glasses.

– Proton disclosed user data to FBI concerning protest involvement, sparking controversy.

– New laws and policies introduced, including the Rural and Municipal Utility Cybersecurity Act and cybersecurity leadership changes in DHS.

Email 2:

Subject: Russian hackers target Signal and WhatsApp accounts of officials, journalists, and military

Sender: info@metacurity.com

Summary:

– Dutch intelligence agencies warn of Russian-backed hackers launching global campaigns to compromise Signal and WhatsApp accounts of officials, journalists, and military personnel using phishing and Signal’s linked devices feature.

– Microsoft reports North Korean threat groups using AI to enhance fake digital persona creation for long-term infiltration of companies, using tools like Faceswap and AI to generate code and communications.

– Trump administration released a cyber strategy emphasizing offensive operations, federal network modernization, critical infrastructure protection, regulatory reforms, emerging technologies like AI, and workforce development.

– The Department of Homeland Security and Secret Service seek real-time access to Americans’ travel records through third-party booking data, raising privacy concerns.

– A major cyberattack forced a Polish hospital into paper-based operations after encrypting hospital IT systems.

– China-linked cyber espionage group targeted South American telcos with three newly discovered malware families operating on diverse platforms.

– U.S. cybersecurity agency CISA updated its Known Exploited Vulnerabilities list, including the Coruna iOS exploit kit used by multiple threat actors.

– Collaboration between Anthropic and Mozilla resulted in discovery and patching of 22 Firefox vulnerabilities.

– Australia enacts sweeping online age restrictions, leading to VPN surges.

– Additional news on cyberattacks in Colombia, maritime signal jamming in Persian Gulf, and security flaws in Western Australian government Microsoft 365 implementations.

– OpenAI launched Codex Security, an AI agent to detect and fix vulnerabilities in databases.

– Trend Micro identified an info-stealing malware campaign distributed via fake GitHub repos.

– Study reveals AI tools can be used for academic fraud and junk science production.

– EU court adviser recommends banks refund fraud victims immediately, shifting liability considerations.

Email 3:

Subject: IDF claims to have destroyed Iran’s cyber warfare headquarters | The CyberWire 3.9.26s

Sender: editor@newsletter.n2k.com

Summary:

– Israeli Defense Forces claim destruction of Iran’s cyber warfare headquarters located in eastern Tehran after an airstrike. The target was the IRGC’s cyber and electronic headquarters.

– Experts say this will significantly impact Iran’s cyber capabilities, although proxy cyber operations remain a threat.

– The White House released the Trump administration’s cyber strategy focusing on offensive cyber operations, federal network modernization, critical infrastructure protection, AI and post-quantum cryptography, regulatory reform, and workforce development.

– A Ghanaian national pleaded guilty in the U.S. for role in a romance scam operation that stole over $100 million, facing up to 20 years in prison with sentencing scheduled for June 2026.

Email 4:

Subject: US Cyber Strategy Unveileds

Sender: news@securityweek.com

Summary:

– The Trump administration’s US Cyber Strategy was released, featuring six main pillars: shaping adversary behavior with offensive capabilities, modernizing federal networks with AI, securing critical infrastructure and software supply chains, streamlining cyber regulations, leveraging emerging technologies including AI and post-quantum cryptography, and building cyber workforce capacity.

– Recent relevant cyber incidents include abuse of Internet infrastructure (.arpa) for phishing, a new Windows Terminal-based attack called ClickFix, exploitation of Cisco Catalyst SD-WAN vulnerability, and malware distribution via 100+ GitHub repositories.

– Pentagon’s chief technology officer clashed with AI company Anthropic over the use of autonomous warfare systems.

– Ongoing FBI investigations focus on suspicious cyber activity on systems holding sensitive surveillance information.

– Rising cyber threats from Iranian hackers targeting airports, banks, and software companies.

– Leadership changes at DHS including the appointment of James ‘Aaron’ Bishop as Pentagon CISO.

– SecurityWeek expert insights on risks boards must prioritize and managing technical debt from AI-assisted software development.

Stay Well!