Summary On March 18, 2026, the ransomware group DragonForce executed a cyberattack againstConrad Capital Management (conradcapitalmanagement.com), a notable U.S. investment advisory firm.The group has indicated that sensitive customer and financial data is at risk unless specific demands are met. Incident Report Field Details Target Conrad Capital Management Domain conradcapitalmanagement.com Country USA Attacking Group DragonForce Date...Read More
Summary On March 19, 2026, the notorious ransomware group Sinobi claimed responsibility for a cyberattack againstElgi Electric & Industries, a prominent provider of industrial electric motors and automation solutions based in India.The group has issued a threat to release sensitive data unless their demands are met. Incident Report Field Details Target Elgi Electric & Industries...Read More
Summary On March 18, 2026, the ransomware group Dragonforce claimed responsibility for a cyberattack onFlexform SpA (flexform.it), a renowned Italian furniture manufacturer located in the heart of the La Brianza district. The group has issued threats to release confidential information unless their ransom demands are addressed promptly. Incident Report Field Details Target Flexform SpA Domain...Read More
Summary On March 18, 2026, the ransomware group Dragonforce claimed responsibility for a cyberattack againstDynex/Rivett Inc. (dynexhydraulics.com), a leading U.S. company in the hydraulic systems industry.The group issued an extortion notice, threatening to leak sensitive data if negotiations are not initiated. Incident Report Field Details Target Dynex/Rivett Inc. Domain dynexhydraulics.com Country USA Attacking Group Dragonforce...Read More
Summary On March 18, 2026, the ransomware group Qilin claimed responsibility for a cyberattack on L H Lacy (lhlacy.com), a significant entity in the U.S. construction sector. The group has threatened to release sensitive data unless their ransom demands are met. Incident Report Field Details Target L H Lacy Domain lhlacy.com Country USA Attacking Group...Read More
Summary On March 19, 2026, the ransomware group Sinobi publicly claimed responsibility for a cyberattack against Amerinational Management Services (AMS) (amerinationalms.com), a leading provider of business solutions for martial arts schools in the USA. Sinobi has threatened to leak sensitive data unless negotiations commence. Incident Report Field Details Target Amerinational Management Services (AMS) Domain amerinationalms.com...Read More
Summary On March 18, 2026, the ransomware group Insomnia publicly claimed responsibility for a cyberattack againstValley Family Health Care (vfhc.org), a prominent community health center in the USA.The group issued a threat of data leak unless the organization initiates negotiations. Incident Report Field Details Target Valley Family Health Care Domain vfhc.org Country USA Attacking Group...Read More
Ravie LakshmananMar 19, 2026Cybersecurity / Hacking News ThreatsDay Bulletin is back on The Hacker News, and this week feels off in a familiar way. Nothing loud, nothing breaking everything at once. Just a lot of small things that shouldn’t work anymore but still do. Some of it looks simple, almost sloppy, until you see how...Read More
The Warlock ransomware first appeared in June 2025 and made an impact weeks later, after attackers deploying it were discovered exploiting the ToolShell zero-day vulnerability in Microsoft SharePoint (CVE-2025-53770) on July 19, 2025. Warlock is an unusual threat. Unlike many ransomware operations, which are headquartered in Russia or other countries in the Commonwealth of Independent...Read More
Unknown baddies are abusing yet another critical Microsoft SharePoint bug to compromise victims’ SharePoint servers, the US government warned. CVE-2026-20963 is a critical deserialization flaw in SharePoint that allows unauthenticated attackers to remotely execute code on the server without any user interaction, and Redmond fixed the issue as part of its January Patch Tuesday. At...Read More
