AI Agent Hijacking: Instagram VIP Takeover and EU Risk 2026
Meta's Instagram AI support agent was manipulated via prompt injection to bypass MFA and hand attackers control of verified VIP accounts.
Incident Report
9 articles
Exchange OWA CVE-2026-42897: Swiss On-Prem Alert 2026
CVE-2026-42897 exploits Exchange OWA via crafted email with no permanent patch available. Swiss on-premises deployments face active exploitation risk.
Unimed Breach: Swiss Healthcare Third-Party Risk 2026
The Unimed third-party billing breach at German university hospitals exposes 12,600 patients. Swiss hospitals face identical data concentration risk.
Akira Ransomware Hits Swiss Medical Network 3R Again 2026
Akira ransomware struck Groupe 3R's 20 imaging centres in April 2026 — the second attack in 12 months on Swiss healthcare infrastructure.
Canvas LMS Breach: Swiss Universities Data at Risk 2026
ShinyHunters stole data from 15,000 Canvas LMS institutions. Swiss universities face nDSG breach notifications and student data exposure risks.
NCSC Week 19: Business Email Compromise Wave Hits Swiss SMEs — CHF 2.3M in Confirmed Losses
The NCSC Week 19 alert documents a BEC campaign targeting Swiss SMEs in manufacturing and logistics, with CHF 2.3M in confirmed wire transfer losses.
Identity Fraud with a Swiss Face: The NCSC's Warning on Fake Company Job Scams
The NCSC's Week 12 alert documents a new tactic: cloning registered Swiss companies to post fraudulent job ads and harvest applicants' data.
The HTML Invoice Trap: Anatomy of the Phishing Campaign Targeting Swiss Companies Right Now
The NCSC's Week 11 alert covers a live campaign hitting Swiss companies: fake invoice ZIPs with HTML credential stealers and CAPTCHA evasion.
Spear Phishing in Swiss Finance: Anatomy of a 2025 Campaign
A spear phishing campaign targeting Swiss wealth managers used impersonated correspondence from Swiss financial regulators.