THE weekly recap flags a quieter week but with notable activity, including Citrix NetScaler under active exploitation for CVE-2026-3055 (CVSS 9.3) as of March 27, 2026. It also highlights the FBI’s confirmation of a breach of FBI Director Kash Patel’s personal email account, with Handala claiming responsibility, and notes sanctions by the U.K. against Xinbi for facilitating large-scale online fraud and pig‑butchering scams linked to #8 Park.
The report covers persistent threats, such as Red Menshen sleeper‑cell implants spying on telecom networks, and GlassWorm’s data‑theft framework delivering a remote access Trojan. Apple’s rollout of UK age verification in iOS 26.4 is described, alongside warnings about ClickFix‑style copy‑paste attacks and related families of malware, and the piece notes that LLM prompt jailbreaking remains a practical risk.
According to eSentire, the Apple coverage details that the new measures include a Paste Anyway option and warnings about pasting harmful commands, with broader concerns about how such techniques are used in campaigns.