Chargebacks only capture a narrow slice of fraud losses, hiding bigger issues that affect revenue, customer experience, and long-term profitability.
OpenAI is rotating its macOS code-signing certificates after a compromised Axios npm package (version 1.14.1) was executed within a GitHub Actions workflow on March 31, 2026, potentially exposing credentials used to sign ChatGPT Desktop and other apps.
Booking.com has confirmed that unauthorized third parties accessed booking information tied to user reservations, prompting forced PIN resets and direct email notifications to affected customers.
U.S. and Indonesian authorities have jointly dismantled W3LL, a full-service phishing platform that enabled over $20 million in fraud and targeted more than 56,000 Microsoft 365 accounts worldwide.
China-linked APT41 has deployed a zero-detection Linux backdoor targeting AWS, Google Cloud, Azure, and Alibaba Cloud environments, using SMTP port 25 as a covert C2 channel and typosquatted domains to mask malicious traffic.
Adobe has pushed an out-of-band security update for Acrobat and Reader to address CVE-2026-34621, a zero-day vulnerability exploited in the wild since at least December that allows malicious PDFs to escape sandbox protections and execute arbitrary code.
The ShinyHunters cybercrime group says it accessed Rockstar Games data via stolen authentication tokens linked to cloud analytics provider Anodot, threatening to leak files unless a ransom is paid by April 14.
Booking.com has begun alerting customers that hackers may have accessed personal details tied to their travel reservations, though the company says no financial or payment information was compromised.
Claims that LinkedIn is running mass corporate espionage by scanning users' browser extensions have gone viral, but security researchers say the reality is far more mundane — and the real concern may be the extensions themselves.
A new subscription-based infostealer named Storm emerged on underground forums in early 2026, shifting credential theft to server-side decryption to evade endpoint security tools and automate session hijacking against SaaS, cloud, and internal platforms.