**Hacker Pranks: Week in Review**

**Hacking and Cybersecurity News You Need to Know**

The world of cybersecurity is constantly evolving, with new threats and vulnerabilities emerging every day. In this week's review, we'll take a closer look at some of the most significant developments in the world of hacking and cybersecurity.

**Attackers Use AiTM Phishing Kit to Hijack AWS Accounts**

Phishers are targeting AWS account holders with fake email security alerts, redirecting them to a high-fidelity clone of the AWS Management Console sign-in page. This campaign has been running since the end of February and possibly earlier. "In one observed case, the operator authenticated to a compromised AWS account within 20 minutes of credential submission," researchers noted.

**Year-Long Malware Campaign Targets HR Departments and Job Recruiters**

An attack campaign targeting HR departments and job recruiters has been stealthily compromising systems. The Russian-speaking attacker(s) behind this campaign have managed to keep their activity largely under the radar by avoiding analysis environments and leveraging a specialized module designed to kill antivirus and endpoint detection software.

**Microsoft Patches 80+ Vulnerabilities, Six Flagged as "More Likely" to be Exploited**

On March 2026 Patch Tuesday, Microsoft addressed 80+ vulnerabilities affecting its software and cloud services. Of these, two were publicly disclosed, but not actively exploited. The two publicly disclosed flaws are CVE-2026-21262, a vulnerability in SQL Server that may allow attackers to gain SQLAdmin privileges, and CVE-2026-26127, a .NET flaw that can be triggered for a denial of service attack.

**Researchers Uncover AI-Powered Vishing Platform**

A vishing-as-a-service platform that helps scammers carry out so-called "press 1" scams is misusing text-to-speech (TTS) capabilities provided by AI voice technology company ElevenLabs. For "press 1" scams, fraudsters spoof phone numbers of trusted institutions (e.g., bank), call up potential victims, and try to scare them with pre-recorded messages into sharing sensitive information.

**ShinyHunters Claims New Campaign Targeting Salesforce Experience Cloud Sites**

Salesforce customers have, once again, been targeted by the ShinyHunters group – or, at least, it's what the group claims. On Saturday, Salesforce confirmed that its security team has identified an attack campaign by unnamed malicious actors looking to access customers' data.

**Zero Trust and Zero Buzzwords: What it Means**

In this Help Net Security video, Murat Balaban, CEO of Zenarmor, breaks down zero trust and zero trust network access (ZTNA) without the buzzwords. The video covers why this approach matters, including the risk of lateral movement after a breach and the growing number of cloud and SaaS environments.

**Product Showcase: Fing Desktop Puts Network Visibility on Your Screen**

Fing Desktop provides tools that identify devices, test connectivity, and analyze network activity. Knowing what's connected helps users manage performance and security.

**Open-Source Tool Sage Inserts Security Layer Between AI Agents and the OS**

Autonomous AI agents running on developer workstations execute shell commands, fetch URLs, and write files with little or no inspection of what they are doing. Open-source project Sage inserts an interception layer between an AI agent and those operations, checking each action before it proceeds.

**More AI Tools, More Burnout!**

New research explains why Workflows built around multiple AI agents and constant tool switching are adding cognitive strain across large enterprises. A recent Harvard Business Review analysis describes this pattern as "AI brain fry," a form of mental fatigue tied to intensive use and oversight of AI systems.

**EU Parliament Backs Extension of CSAM Detection Rules Until 2027**

The European Parliament has voted to extend a temporary exemption to EU privacy legislation that allows online platforms to voluntarily detect child sexual abuse material (CSAM).

**Cybersecurity Jobs Available Right Now**

We've scoured the market to bring you a selection of roles that span various skill levels within the cybersecurity field. Check out this weekly selection of cybersecurity jobs available right now.

**New Infosec Products of the Week**

Here's a look at the most interesting products from the past week, featuring releases from Binary Defense, Mend.io, OPSWAT, Singulr AI, SOC Prime, Terra Security, and Vicarius.

Stay informed about the latest developments in the world of hacking and cybersecurity. Follow us on social media and stay up-to-date with the latest news and updates.

**Follow us on Twitter:** @HackerPranks

**Follow us on LinkedIn:** @HackerPranks

**Subscribe to our newsletter:** [insert newsletter link]

Stay safe, and stay informed!