Activity of the Tycoon2FA phishing-as-a-service platform has returned to normal levels weeks after being taken down in a global law enforcement operation led by Microsoft earlier this month, reports BleepingComputer.

Threat actors who weaponized the AI cloud-hosting service Railway were able to compromise the Microsoft cloud accounts of 344 organizations, including government, healthcare, finance, and construction entities, around the world as part of an AI-powered phishing campaign that has been underway since earlier this month, CyberScoop reports.

Numerous phishing scams involving tax-related lures have been launched by threat actors to deploy malware and credential-stealing payloads before the tax season ends on Apr. 15, The Hacker News reports.

Security Affairs reports that multiple energy sector organizations across the Middle East have been subjected to attacks from newly emergent Iran-linked threat operation Nasir Security amid intensifying geopolitical tensions in the region.

Massive data breach at Lockheed Martin claimed by pro-Iran hacktivist Major U.S. global security, defense, and aerospace contractor Lockheed Martin reportedly had 375 TB of data stolen by pro-Iran hacktivist collective APT Iran, according to Cybersecurity Dive.

North Korean threat operation WaterPlum, which runs the Contagious Interview campaign, has leveraged malicious VS Code projects to deliver the new StoatWaffle malware since December, reports The Hacker News.

Decentralized finance platform Resolv had its infrastructure compromised to mint nearly $80 million of uncollateralized USR stablecoins, which the threat actor was able to convert into nearly $24.5 million worth of ETH, according to The Record, a news site by cybersecurity firm Recorded Future.

Cybernews reports that widely known anime streaming platform Crunchyroll had nearly 100 GB of data allegedly stolen from its analytics and support systems following an intrusion against an employee at its business process outsourcing partner Telus earlier this month.

TrioTech International, a California-based global semiconductor back-end solutions provider offering manufacturing, testing, and distribution services, has disclosed that its Singaporean subsidiary has been compromised in a March 11 ransomware attack, which has been claimed by the Gunra ransomware operation, according to SecurityWeek.

Florida-based international educational services firm Kaplan, which offers test preparation services for high school and graduate exams, had data from at least 230,941 individuals across seven U.S. states stolen following a cybersecurity incident late last year, reports The Record, a news site by cybersecurity firm Recorded Future.