Cybersecurity Incidents and Alerts March 27, 2026 Roundup – AI Leaks, Phishing Scams, and Data Breaches Dominate Headlines

The past 24 hours have witnessed a significant surge in high-profile cybersecurity incidents, ranging from AI-related data leaks to sophisticated phishing campaigns and large-scale data breaches.

Cybersecurity Incidents and Alerts March 27, 2026 Roundup – AI Leaks, Phishing Scams, and Data Breaches Dominate Headlines

The past 24 hours have seen a surge in high-profile cybersecurity incidents, ranging from AI-related data leaks to sophisticated phishing campaigns and large-scale data breaches. Below is a breakdown of the most critical events, categorized by theme for clarity. All incidents are sourced from verified reports published on March 27, 2026.

—

1. AI and Emerging Technology Risks

The AI sector faced significant turmoil as Anthropic, a leading AI company, confirmed a data leak revealing its secretive ‘Claude Mythos’ model—a next-generation AI system described as a ‘step change’ in capabilities but also posing ‘unprecedented cybersecurity risks.’ The leak, discovered in a publicly accessible data cache, included details of an invite-only CEO summit in Europe aimed at selling AI models to corporate clients. Anthropic acknowledged testing the model with early-access customers but emphasized cautious rollout due to its advanced reasoning and coding abilities. The incident follows a federal judge’s temporary block on the Trump administration’s ban on Anthropic, citing ‘Orwellian’ supply chain risk claims. Read more (Alexei Oreskovic, Fortune).

In parallel, OpenAI paused plans to launch an erotic chatbot amid internal and investor concerns over potential social harms, including emotional manipulation and underage exposure. The decision reflects a broader strategic shift, with OpenAI deprioritizing projects like its video-model Sora to focus on core offerings such as ChatGPT. Meanwhile, Apple announced it will open Siri to third-party AI apps (e.g., Anthropic’s Claude, Google’s Gemini) in its upcoming iOS 27 update, marking a rare concession for the traditionally closed ecosystem. Read more (Alexei Oreskovic, Fortune).

—

Phishing and Social Engineering Attacks

Phishing scams continued to evolve in sophistication, with multiple high-impact campaigns reported:

• TikTok Business Accounts Targeted: Threat actors deployed adversary-in-the-middle (AitM) phishing to hijack TikTok for Business accounts, using Cloudflare Turnstile to evade bot detection. Victims were lured via malicious links impersonating TikTok or Google Careers pages. The stolen accounts are often repurposed for malvertising or malware distribution (e.g., Vidar, StealC, Aura Stealer). Domains involved include careerscrews[.]com and careersstaffgrid[.]com.
• Punchbowl Phishing Scam: A wave of fake Punchbowl event invitations hit Peekskill, NY, tricking users into entering credentials on spoofed login pages. Victims like local pianist Alex Smith had their email accounts hijacked to send further scams to contacts. Legitimate Punchbowl emails always originate from @punchbowl.com or @emails.punchbowl.com; users are advised to verify sender addresses and avoid attachments. More details can be found here.
• Pennsylvania Text Scams: The Pennsylvania Department of Transportation (PennDOT) warned of SMS phishing scams threatening license/registration suspension for unpaid fines. PennDOT does not send texts; all official communications use postal mail. Similar scams targeting E-ZPass/Toll By Plate users were reported, with links leading to fraudulent payment portals. PennDOT issued an official warning.

.

Financial Cybercrime and Data Breaches

Financial cybercrime and data breaches continued to plague institutions:

• Lloyds Banking Group Data Breach: A software defect in an IT update exposed 447,936 customers’ (Lloyds, Halifax, Bank of Scotland) transaction data on March 12, 2026. Of these, 114,182 users clicked on visible transactions, potentially exposing account details, national insurance numbers, and payment references. Lloyds has paid £139,000 in compensation to 3,625 customers for distress, though no financial losses were reported. The breach underscores risks in digital banking transitions. For more on this, review kcnet.
• Indian Cyber Fraud Epidemic: Nearly 1 in 3 Indian PC users faced offline cyberattacks in 2025, with 6.46 crore (64.6 million) local incidents blocked by Kaspersky. Attacks primarily spread via USB drives and removable media, featuring worms, file viruses, and spyware. Hackers mimicked tools like Microsoft Teams and Google Drive to steal credentials. Globally, password stealers surged 59% and spyware by 51%. For more insights into this, check out kcnet.
• Ahmedabad Doctor Scammed: An 83-year-old retired doctor lost ₹1 lakh in a cyber fraud where transactions were executed without OTP/password sharing. The FIR was delayed by 2 months, highlighting systemic gaps in reporting. Elderly individuals remain prime targets; a separate case in Gwalior involved a 90-year-old retired Air Force doctor duped of ₹2.5 crore via ‘digital arrest’ tactics. Read more on cyber frauds in kcnet.
• Bhagalpur Biometric Fraud: Police arrested Rajkishore Yadav, a Customer Service Point (CSP) operator, for cloning fingerprints of 400+ villagers (including women) using silicone molds. Yadav allegedly siphoned funds from Aadhaar-linked accounts, banking details, and government schemes, exploiting illiteracy. ₹25,000–₹30,000 per victim was stolen, with total losses potentially exceeding crores. For a detailed analysis, refer to kcnet.

Regulatory and Legal Developments

South Korea’s Class Action Push: Following high-profile data breaches (e.g., Coupang’s massive breach), South Korea’s Ministry of Justice is advancing a general class action regime to streamline consumer compensation for mass harm. The proposal aims to recalibrate corporate accountability amid rising digital risks. This move is significant as it addresses long-standing gaps in consumer redress mechanisms. Class action lawsuits can empower consumers to hold corporations accountable for data breaches, ensuring that affected individuals receive adequate compensation. This legal development is part of a broader trend towards strengthening cybersecurity regulations globally. See more on escalating cyber threats.

Final words

March 27, 2026, highlighted the diverse and evolving nature of cyber threats. As attackers leverage cutting-edge tech and exploitable human behaviors, a multi-layered defense strategy is critical. Stay updated via official sources and report incidents promptly to mitigate fallout.