zerofox logo
Advisories

ZeroFox Weekly Intelligence Brief – March 7, 2026-2

|by Alpha Team

banner image

ZeroFox Weekly Intelligence Brief – March 7, 2026

ZeroFox’s Weekly Intelligence Briefing highlights the major developments and trends across the threat landscape, including digital, cyber, and physical threats. ZeroFox Intelligence is derived from a variety of sources, including—but not limited to—curated open-source accesses, vetted social media, proprietary data sources, and direct access to threat actors and groups through covert communication channels. Information relied upon to complete any report cannot always be independently verified. As such, ZeroFox applies rigorous analytic standards and tradecraft in accordance with best practices and includes caveat language and source citations to clearly identify the veracity of our Intelligence reporting and substantiate our assessments and recommendations. All sources used in this particular Intelligence product were identified prior to 6:00 AM (EST) on March 5, 2026; per cyber hygiene best practices, caution is advised when clicking on any third-party links.

Read the Brief

View the full report here

Authorities Take Down LeakBase, Seize Domains and Data

What we know:

  • The United States and allies have shut down the illicit forum LeakBase, seizing its data and two domains used to operate the platform.
  • Authorities have also taken “measures” against 37 most active users of the platform.

LastPass Warns of New Phishing Campaign

What we know:

  • Password manager app LastPass is warning users of a phishing campaign designed to steal login credentials.
  • This is the second such warning in 2026, with the last one reported in January 2026. LastPass added that its infrastructure has not been compromised and that there has been no impact on its systems.

Pakistani News Channels Hit by Transmission Hijack; Retaliatory Attacks Target Indian Broadcaster

What we know:

  • Several major Pakistani television channels have experienced a significant broadcast disruption after unknown actors of unconfirmed allegiance allegedly hijacked satellite transmissions.
  • Following the incident, threat group Pakistan Cyber Force allegedly carried out retaliatory cyber activity, targeting major Indian broadcaster ABP News, defacing a website, and launching distributed denial-of-service (DDoS) attacks.

Tags: tlp:green