Weekly threat intelligence roundup covering major cyberattacks including a European Commission data breach via a Trivy supply chain attack, a $280M Drift Protocol crypto breach, and Hasbro network intrusion. AI threats include a ChatGPT hidden DNS exfiltration channel, risks from Anthropic's Claude Mythos capabilities, and flaws in AI agents enabling impersonation attacks. Critical vulnerabilities patched include a Cisco IMC authentication bypass, a Chrome WebGPU zero-day under active exploitation, and critical ShareFile RCE flaws. Threat intelligence highlights include the TrueChaos 0-day campaign against Southeast Asian governments, an Iran-nexus Microsoft 365 password-spraying campaign, tax-season phishing activity, and a supply chain compromise of the Axios npm package.
Sort: