Cybersecurity News | Daily Recap [20 Mar 2026] Daily Recap, Iran-linked Handala resurged with a new domain after U.S. seizures, with authorities tying the actor to MOIS and investigators linking destructive Stryker wipes to the campaign as CISA/FBI warned about hardening Microsoft Intune. In the nation-state and supply-chain space, APT28 exploited a high-severity Zimbra CVE-2025-66376 against Ukrainian government mail, Lazarus/Bluenoroff suspected in Bitrefill, Speagle hijacked Cobra DocGuard to exfiltrate data, and Interlock ransomware abused a Cisco zero-day CVE-2026-20131. #Handala #MOIS #Stryker #Intune #APT28 #Lazarus #Bluenoroff #Speagle #CobraDocGuard #Interlock #Zimbra #Cisco

Iran-linked Handala returns with a new domain after U.S. seizures, tied to MOIS. Stryker wipes linked, APT28 exploits Zimbra CVE-2025-66376 on Ukrainian gov mail, Interlock ransomware abuses Cisco zero-day. #IranOps #Ukraine #CiscoExploit

RedMike Hack: Exploiting Cisco Devices for Cyber Espionage RedMike, a Chinese state-sponsored hacking group known as Salt Typhoon, exploited vulnerabilities in over 1,000 unpatched Cisco devices...

🚨 Cyberattack Alert! 🚨

🔍 RedMike Hackers (Salt Typhoon) exploited 1,000+ Cisco devices using critical vulnerabilities in IOS XE software to steal sensitive data.

➡️ Read the Full Story: technijian.com/cyber-securi...

#CyberSecurity #CiscoExploit #RedMikeHackers #SaltTyphoon #NetworkSecurity