Live Threats
[STRUTS]Apache Struts zero-day (CVE-2026-3101) under mass exploitation — ransomware groups deploying web shells on Java web apps. Patch immediately.|
[LAZARUS]North Korean Lazarus Group targets SMB defense contractors via fake LinkedIn recruiter profiles delivering trojanized job documents.|
[DEEPFAKE]Deepfake CEO video call fraud stole $3.2M in a single transaction. AI voice and face synthesis now indistinguishable — targeting US SMBs.|
[CHROME]CVE-2026-2356 Chrome zero-day actively exploited to deliver spyware. Update to 136.0.7103.92 immediately on all devices.|
[HIPAA]HHS finalized major HIPAA Security Rule updates — mandatory encryption at rest, MFA, and annual pen testing effective December 31, 2026.|
[CISA KEV]CISA added 15 new KEV entries this week — six are priority patches for internet-facing systems including Struts, Chrome, Cisco, Fortinet, Ivanti, and VMware.|
[STRUTS]Apache Struts zero-day (CVE-2026-3101) under mass exploitation — ransomware groups deploying web shells on Java web apps. Patch immediately.|
[LAZARUS]North Korean Lazarus Group targets SMB defense contractors via fake LinkedIn recruiter profiles delivering trojanized job documents.|
[DEEPFAKE]Deepfake CEO video call fraud stole $3.2M in a single transaction. AI voice and face synthesis now indistinguishable — targeting US SMBs.|
[CHROME]CVE-2026-2356 Chrome zero-day actively exploited to deliver spyware. Update to 136.0.7103.92 immediately on all devices.|
[HIPAA]HHS finalized major HIPAA Security Rule updates — mandatory encryption at rest, MFA, and annual pen testing effective December 31, 2026.|
[CISA KEV]CISA added 15 new KEV entries this week — six are priority patches for internet-facing systems including Struts, Chrome, Cisco, Fortinet, Ivanti, and VMware.|
View All
Windows Is Handing Out Admin Access for Free, Chrome Has a Zero-Day & DoD Contractors Have 6 Months to Comply
All Security News|ISSUE #15March 31 – April 6, 2026
Print / PDF

Windows Is Handing Out Admin Access for Free, Chrome Has a Zero-Day & DoD Contractors Have 6 Months to Comply

NTLM relay attacks are up 300% — attackers on your network can become domain admin without knowing a single password. Chrome's zero-day was already being used before Google knew about it. And if you hold a DoD contract, the clock on CMMC is running.

#NTLM#CMMC#Chrome#DoD#Zero-Day
2
Critical
2
High Severity
1
Patch Updates
1
Breach Alerts
TL;DR — This Week's Key Takeaways

NTLM relay attacks are surging — disable NTLM where possible. CMMC 2.0 Level 2 assessments are now required for DoD contractors. Google patched a critical Chrome zero-day being used in targeted attacks.

Share This
LinkedInX / TwitterEmail
SEVERITY:CRITICALHIGHMEDIUMLOWINFO

CLICK ANY ARTICLE TO READ THE FULL STORY

THREAT INTELCRITICAL

NTLM Relay Attacks Surge 300% — Microsoft Issues Urgent Guidance

Microsoft's threat intelligence team reported a 300% increase in NTLM relay attacks targeting Windows environments in Q1 2026. SMBs using on-premises Active Directory are particularly at risk.

Read Full Article
5 min read
COMPLIANCEHIGH

CMMC 2.0 Level 2 Assessments Now Required for DoD Contractors

The Department of Defense has begun requiring CMMC 2.0 Level 2 third-party assessments for contractors handling Controlled Unclassified Information (CUI). Self-attestation is no longer sufficient for Level 2.

Read Full Article
6 min read
PATCH UPDATECRITICAL

Google Chrome Emergency Patch: CVE-2026-1891 Zero-Day Used in Targeted Attacks

Google released an emergency update for Chrome addressing CVE-2026-1891, a type confusion vulnerability in the V8 JavaScript engine being actively exploited in targeted attacks. Update to version 134.0.6998.177 or later immediately.

Read Full Article
3 min read
ADVISORYMEDIUM

NSA & CISA Release Top 10 Cybersecurity Misconfigurations Found in SMB Environments

The NSA and CISA jointly published a report detailing the top 10 cybersecurity misconfigurations most commonly found during red team assessments of small business environments, with remediation guidance.

Read Full Article
5 min read
BREACHHIGH

Law Firm Data Breach: Ransomware via Phishing Email Exposes Client Records

A mid-sized law firm suffered a ransomware attack that encrypted client files and exfiltrated sensitive legal documents. The attack originated from a phishing email that bypassed legacy email filters.

Read Full Article
4 min read
Texas Law Alert
Texas SB 2610 Safe Harbor Law
Texas Law Update

Texas SB 2610 "Safe Harbor" — Is Your Business Protected?

A new Texas law shields small businesses from punitive damages in data breach lawsuits — but only if you have a documented cybersecurity program before a breach occurs. Effective Sept 1, 2025.

Effective Sept 1, 2025·< 250 employees
See if you qualify

Need Help Addressing These Threats?

Our team monitors these vulnerabilities and can help you patch, assess, and protect your business before attackers strike.

Schedule a Security ReviewCall (210) 496-7313
PREVIOUS ISSUE
Ransomware Groups Found a Way to Kill Every VM at Once — and They're Doing It Right Now
NEXT ISSUE
Palo Alto Firewalls Backdoored, 2.3M Poisoned npm Downloads & PCI DSS Deadline Already Passed