Weekly threat intelligence roundup covering major cyberattacks, AI-related threats, and newly patched vulnerabilities. Notable breaches include AkzoNobel (170 GB stolen by Anubis ransomware), LexisNexis (3.9M records), and TriZetto (3.4M healthcare records). AI threats include APT36 using AI coding tools to generate malware, malicious Chrome/Edge extensions harvesting LLM chat histories, and demonstrated indirect prompt injection attacks against AI agents. Patches were issued for critical flaws in Chrome's Gemini panel, a WordPress membership plugin (CVSS 9.8), VMware Aria Operations, and Qualcomm chipsets. Threat intelligence reports cover Iranian cyber operations targeting IP cameras, and Chinese-aligned Silver Dragon group targeting Southeast Asia and Europe.
Sort: