Cyber Security News

Hacking Editorial Brief: April 3, 2026

European institutions are facing an escalating cyberattack campaign following the exploitation of critical cloud infrastructure vulnerabilities. The European Commission confirmed that a major cybercrime group breached its cloud systems and exfiltrated personal data, with EU cybersecurity teams now working to attribute the attack and contain the damage. Multiple government institutions across the bloc have been compromised, reflecting a broader pattern of rapid exploitation against high-value targets. Separately, the FBI has designated the China-linked intrusion into U.S. surveillance systems a "major cyber incident," with investigators focusing on the Salt Typhoon threat actor, though no formal attribution has been made.

Threat actors are increasingly operationalizing artificial intelligence in their attack workflows, according to Microsoft Threat Intelligence. AI-powered phishing campaigns now show 450% higher click-through rates, with adversaries embedding AI into reconnaissance, malware development, and post-compromise operations. North Korean groups are leading this trend, using generative AI to draft phishing lures and debug malware. Meanwhile, Ukrainian threat actor UAC-0255 impersonated the country's CERT-UA in a massive phishing operation targeting approximately 1 million users with the AGEWHEEZE remote access tool. Additional vulnerabilities emerged this week including CVE-2026-32173, a critical authentication bypass in Azure SRE Agent allowing unauthorized information disclosure, and new flaws in Claude Code surfacing days after its source code leak.

Sources: POLITICO · POLITICO · HSToday · Microsoft Security Blog · Microsoft Security Blog · InfoSec Today · The Hacker Wire · SecurityWeek