Cybersecurity Roundup: AI Risks, Mac Malware, and Major Breaches Dominate the Week This week’s cybersecurity landscape was marked by high-profile threats, regulatory discussions, and industry responses to emerging risks. Here are the key developments: AI Cybersecurity Concerns Prompt Fed Discussions Federal Reserve Chair Jerome Powell and Treasury Secretary Scott Bessent met with major U.S. banks to assess cyber risks posed by Anthropic’s Mythos, a high-reasoning AI model with advanced exploit-chaining capabilities. Currently restricted to select partners under Project Glasswing, Mythos raises concerns about autonomous cyber threats. New macOS Stealer Targets High-Value Crypto Wallets A hacker, previously active in underground forums, resurfaced with NotnullOSX, a macOS stealer targeting victims holding over $10,000 in cryptocurrency. Detected in Vietnam, Taiwan, and Spain on March 30, 2026, the malware spreads via fake Google documents and malicious DMG files, gaining Full Disk Access to steal iMessages, browser credentials, and crypto wallets. Japanese Corporations Form Cybersecurity Alliance Ten major Japanese firms, including Suntory, Kao, Asahi, and NTT, are launching a joint organization to share threat intelligence and develop cybersecurity talent. The initiative follows a September 2025 breach at Asahi that disrupted supply chains and exposed vulnerabilities in interconnected networks. Law Firm Jones Day Hit by Ransomware Attack The Silent Ransom Group (aka Luna Moth) infiltrated Jones Day using social engineering, accessing records of 10 clients and leaking sensitive documents after the firm refused a $13 million ransom demand. Spyware Founder Receives Lenient Sentence Bryan Fleming, creator of the surveillance tool pcTattletale, was sentenced to time served and a $5,000 fine the first federal conviction of a spyware operator in over a decade. Despite facilitating illegal surveillance and suffering a data leak, Fleming avoided additional prison time. DocketWise Breach Exposes 116,000 Individuals Austin-based legal tech firm DocketWise confirmed a 2025 breach exposing personal data of 116,000 individuals after unauthorized access to a third-party repository containing unstructured client records. Cloudflare Accelerates Post-Quantum Security Transition Following Google’s advancements in quantum algorithms, Cloudflare moved its post-quantum security deadline to 2029. The shift responds to research suggesting neutral atom computers could break RSA-2048 and P-256 encryption with fewer qubits than previously estimated. HackerOne Pauses Bug Bounty Submissions Amid AI Surge The Internet Bug Bounty (IBB) program halted new submissions on March 27, 2026, citing an overwhelming influx of AI-assisted vulnerability reports. While existing submissions are processed, organizers plan to restructure incentives to balance discovery and remediation. Windows Zero-Day Exploit Leaked After Microsoft Dispute A researcher publicly released BlueHammer, a Windows zero-day exploiting a race condition in Microsoft Defender to gain SYSTEM privileges. The disclosure followed a breakdown in communication with Microsoft, which has yet to patch the flaw or assign a CVE. Hacker Claims Breach of China’s Supercomputing Center A hacker known as FlamingChina alleged access to the National Supercomputing Center in Tianjin, extracting 10 petabytes of data over six months via a compromised VPN. Leaked samples include classified documents and defense equipment simulations, though some experts question the authenticity of the claims. Stryker Confirms Financial Impact from Cyberattack Medical device manufacturer Stryker reported that a March 2026 cyberattack caused operational disruptions, materially affecting Q1 financial results. While systems have been restored, the investigation into data exposure and regulatory implications remains ongoing. The company reaffirmed its full-year guidance.

The Dow Jones Company experienced a data breach incident in October 2015. The Dow Jones company reported that it has found evidence of unapproved access to its client payment system. The exposed information includes names, addresses, phone numbers, and email addresses of current and past Dow Jones subscribers. It was found over the course of the inquiry that contact and payment card details for fewer than 3,500 people have been accessed.