Cybersecurity Alert: Android Rootkit, ChatGPT Data Leak, and Ransomware Strikes Highlight Global Threats
scsecApril 9, 20262 Mins read 
Weekly Cybersecurity Roundup: ChatGPT Data Leak, Android Rootkit, and Ransomware Hits
SecurityWeek’s latest roundup highlights significant cybersecurity developments from recent weeks, covering new malware, high-profile data breaches, vulnerabilities, and emerging threats affecting businesses, critical infrastructure, and consumers.
Key Stories
Mirax Android Banking Trojan
A sophisticated new Android banking trojan named Mirax is available for rent to cybercriminals at up to $3,000 per month. It provides remote control of infected devices and includes specialized overlays for over 700 financial applications, enabling attackers to bypass security measures and steal sensitive banking data.
Italy Fines Intesa Sanpaolo $36 Million
Italy’s data protection authority fined Intesa Sanpaolo, the country’s largest bank, €31.8 million ($36 million) following a breach that exposed thousands of customer accounts. Investigations revealed employees exploited inadequate security safeguards to access private data over a two-year period.
Apple Adds ClickFix Protection to macOS
Apple updated macOS to combat ClickFix attacks, a social engineering technique where users are tricked into pasting malicious commands into the Terminal. New warnings flag suspicious commands before execution, protecting users from potential compromise.
ChatGPT Data Leak Vulnerability
Researchers at Check Point identified a flaw in ChatGPT’s code execution environment, allowing sensitive user data to be exfiltrated silently via DNS side channels. Information such as conversation history and uploaded files could have been sent to external servers without user consent. OpenAI patched the vulnerability in February 2026.
Symantec DLP Vulnerability Patched
Broadcom released a patch for a high-severity vulnerability in Symantec Data Loss Prevention (DLP) products (CVE-2026-3991). The flaw could allow local attackers to bypass restrictions and gain elevated privileges. Users should update to DLP 16.1 MP2 or 25.1 MP1.
North Dakota Water Facility Ransomware Attack
A ransomware attack targeted the water treatment plant in Minot, North Dakota, on March 14. Staff disconnected affected systems and switched to manual operations for 16 hours, ensuring water safety while containing the incident.
FBI Hack Classified as Major Incident
The FBI reported a breach of its lawful wiretap infrastructure as a major incident, with state-sponsored Chinese hackers suspected. Compromised systems contained pen register/trap and trace surveillance data and personally identifiable information of investigation subjects.
Nissan Data Theft via Third-Party Supplier
Nissan confirmed that sensitive corporate data leaked online originated from a third-party vendor, not internal systems. The Everest ransomware group claimed responsibility and demanded payment.
Operation NoVoice Android Rootkit
Researchers at McAfee uncovered Operation NoVoice, a sophisticated Android malware campaign found in over 50 apps on Google Play with 2.3 million downloads. NoVoice exploited vulnerabilities patched between 2016–2021 to install a persistent rootkit that survives factory resets. Once active, it allows attackers full device control and the ability to inject malicious code into every app, stealing valuable data.
1 Comment
Leave a Reply
Related Articles
Outdated Systems and Vulnerable Apps Leave Most Enterprises Exposed to Cyberattacks
A recent security analysis highlights a widespread problem in enterprise environments: many...
APT28 Turns Vulnerable Routers into a Global DNS Hijacking and Espionage Network
A Russia-linked cyber espionage group, widely tracked as APT28, has been connected...
Iran-Linked Hackers Disrupt U.S. Critical Infrastructure via PLC Attacks
Iran-Linked Hackers Target U.S. Critical Infrastructure via Internet-Exposed PLCs Iran-affiliated cyber actors...
Cybercrime, FBI IC3, Investment Fraud, Ransomware, Cryptocurrency Scams
FBI Reports Cybercrime Losses Nearly $21 Billion in 2025 The FBI’s Internet...
This week’s roundup shows how diverse and serious cyber threats have become—from Android rootkits and ransomware targeting critical infrastructure to data leaks in AI platforms like ChatGPT. Staying updated and practicing strong security hygiene is more important than ever.