Weekly threat intelligence roundup covering major incidents including a Vodafone source code leak by Lapsus$, a $10.7M THORChain crypto theft, ransomware attacks on West Pharmaceutical Services and Foxconn, and AI-related threats such as vulnerabilities in OpenClaw, AI-assisted macOS kernel exploits, and malware hidden in a Hugging Face repository. Also covers unpatched Windows zero-days (YellowKey and GreenPlasma), a critical 18-year-old NGINX flaw patched by F5, an actively exploited Cisco SD-WAN authentication bypass, and Apple Wi-Fi security updates. Threat intelligence reports include an internal leak from The Gentlemen ransomware group, Q1 2026 ransomware statistics with 2,122 victims, World Cup 2026-themed cyber activity surges, and a FamousSparrow APT intrusion against an Azerbaijani oil and gas company.
Sort: