Weekly threat intelligence roundup covering major data breaches at Booking.com, McGraw-Hill, Basic-Fit, and a WordPress supply chain compromise. AI-related threats include a hacker using Claude Code and GPT-4.1 to breach Mexican government agencies, a fake Claude installer distributing PlugX malware, and prompt injection attacks on AI agents in GitHub workflows. Key vulnerabilities include an actively exploited Apache ActiveMQ RCE flaw (CVE-2026-34197), Splunk Enterprise RCE, three Microsoft Defender zero-days, and a Windows Task Host privilege escalation bug. Additional reports cover brand impersonation phishing, ICS-targeting malware at water facilities, Russian C2 infrastructure, and a fake Ledger Live app stealing $9.5M in crypto.
Sort: