THE Security Affairs newsletter Round 567 – INTERNATIONAL EDITION, dated 15 March 2026, rounds up a range of security stories from the past week, beginning with the Starbucks data breach affecting 889 employees and continuing through several cybercrime and security items. Highlights include Storm-2561 spoofed VPN sites used to harvest corporate logins, and Interpol reporting that 45,000 malicious IPs were dismantled with 94 arrests worldwide. The U.S.
CISA added Google Chrome flaws to its Known Exploited Vulnerabilities catalog, while hackers targeted Poland’s National Centre for Nuclear Research and law enforcement disrupted the SocksEscort proxy service tied to the AVrecon botnet. The roundup also notes AI-assisted Slopoly malware powering Hive0163’s ransomware campaigns, and Google fixed two actively exploited Chrome flaws; other items cover data breaches, vulnerability advisories, and supply‑chain guidance from ENISA.
Additional entries include a critical SQL injection affecting over 400,000 WordPress sites via the Ally plugin, and Bell Ambulance data breaches impacting over 238,000 people, according to Interpol.