Here you'll find a digest of cybersecurity news stories from March 2026! Check:
1. Windows 11 emergency update to fix critical ‘no Internet’ sign-in issue
Microsoft released an out-of-band update, KB5085516, on March 21, 2026, for Windows 11 versions 25H2 and 24H2 to fix a critical sign-in issue caused by the March Patch Tuesday update. This issue affected only personal Microsoft account users, causing a "no Internet" error and disrupting access to services like Microsoft Teams, OneDrive, Microsoft Edge, and Copilot.
The update also enhances several AI components and includes the servicing stack update KB5083532 to improve the reliability of the update installation process. Users are urged to apply the patch quickly to restore normal functionality.
2. Notorious hacking group claims a data breach in AstraZeneca
The LAPSUS$ hacking group has claimed responsibility for a data breach involving AstraZeneca, intending to sell a compressed 3GB internal data dump. This group seems to be shifting its tactics from public leaks to extortion methods that require payment for access. As part of their claims, they have shared password-protected links containing redacted secrets to entice potential buyers.
The leaked data includes sensitive intellectual property and crucial details related to AstraZeneca's supply-chain portal, which is essential for managing logistics in pharmaceutical distribution. If this breach is confirmed, it could have serious repercussions for AstraZeneca’s internal supply chain and cloud infrastructure security.
3. End-to-end encryption messaging in Instagram to be removed permanently
Meta will permanently remove end-to-end encryption (E2EE) from Instagram direct messages after May 8, 2026. This decision reverses Meta's earlier commitment to privacy-focused messaging. The E2EE feature was never widely available, rolled out in late 2023 only as an opt-in option in select regions.
After the cutoff, messages will revert to a standard format accessible to Meta for moderation. Users of encrypted chats will receive notifications to download their messages before the deadline. The decision has faced criticism from the security community, raising concerns about Meta’s privacy commitments and the potential for content scanning or AI training using message data.
4. Starbucks data breach exposes sensitive personal data of employees
Starbucks confirmed a data breach affecting its employees, resulting in the exposure of sensitive personal and financial information. Unauthorised actors accessed internal partner accounts through a sophisticated phishing scheme, obtaining valid login credentials via fraudulent websites. The breach compromised data, including full names, social security numbers, dates of birth, and financial account information.
In response, Starbucks launched an internal investigation, notified law enforcement, and strengthened security controls. Affected partners are advised to monitor their financial accounts, place fraud alerts, change passwords, and remain vigilant against phishing attempts. The incident underscores the need for enhanced security measures, such as multi-factor authentication, against credential phishing attacks.
5. Chrome security update fixes 29 vulnerabilities
Google has released Chrome version 146, which includes important security updates for Windows, Mac, and Linux users. This update addresses 29 vulnerabilities, including a critical heap buffer overflow (CVE-2026-3913) that could allow remote code execution through malicious web pages. Other high-severity issues include out-of-bounds read and use-after-free vulnerabilities. Users must prioritise timely security updates to defend against increasing threats targeting web browsers.
6. Microsoft March 2026 Patch Tuesday
Microsoft's March 2026 Patch Tuesday addresses 78 vulnerabilities, including 1 actively exploited zero-day vulnerability and multiple critical-rated flaws across Windows, Microsoft Office, Azure, SQL Server, and .NET.
The vulnerabilities encompass a range of security concerns, such as remote code execution, elevation of privilege, information disclosure, spoofing, denial-of-service, and security features bypass. Users are strongly urged to promptly update their software, particularly focusing on the zero-day vulnerability, the three critical issues affecting Office and Excel, the privilege escalation flaws in the Windows Kernel and SMB Server, along with the remote code execution vulnerabilities found in SharePoint.
7. A wave of account takeovers in Signal
Signal has confirmed a surge of targeted phishing campaigns leading to takeovers of accounts of high-profile users, including journalists and government officials. The core infrastructure and encryption protocols of the service remain secure and uncompromised. Attackers use social engineering tactics, impersonating trusted entities like a fake "Signal Support Bot," to solicit critical authentication data from victims. The goal of these campaigns is to obtain users' SMS verification codes and private Signal PINs.
Signal warns that official representatives will never contact users via in-app messages, SMS, or social media to request verification codes, and that users should never share such details, as any external requests for these codes are scams.
8. Windows Server 2016 and Windows 10 2016 LTSB/LTSC end of support coming soon
Several Windows releases from 2016 are nearing end-of-support, including:
- Windows 10 Enterprise LTSB 2016 (support until October 13, 2026)
- Windows 10 IoT Enterprise 2016 LTSB (support until October 13, 2026)
- Windows Server 2016 (support until January 12, 2027)
After these dates, systems will not receive security patches, bug fixes, or support, making them vulnerable to attacks. Microsoft advises upgrading rather than relying on extended support programs. Recommended upgrade options are:
- Windows Server 2016 to Windows Server 202
- Windows 10 Enterprise LTSB 2016 to Windows 11 Enterprise LTSC 2024 or Windows 10 Enterprise LTSC 202
- Windows 10 IoT Enterprise 2016 LTSB to Windows 11 IoT Enterprise LTSC 2024 or Windows 10 IoT Enterprise LTSC 2021
For organisations unable to migrate immediately, Microsoft offers the paid Extended Security Updates program as a temporary resolution, providing limited security updates and technical support for up to three years after the end-of-support date.
Hope your systems will stay safe and compliant with the NIS2 Directive throughout 2026! If you need help, contact us for expert advice!