⚡ Weekly Recap: AI Automation Exploits, Telecom Espionage, Prompt Poaching & More

This weekly cybersecurity recap covers critical vulnerabilities including a maximum-severity RCE flaw in n8n workflow automation (CVE-2026-21858), the Kimwolf Android botnet infecting 2M+ devices via residential proxy networks, and Chinese-linked exploitation of VMware ESXi zero-days. Other highlights include UAT-7290's telecom espionage campaign in South Asia, Chrome extensions stealing ChatGPT conversations through "prompt poaching," and the PHALT#BLYX campaign targeting European hospitality with fake booking emails. The report also details Salt Typhoon's alleged breach of U.S. congressional email systems, illicit crypto activity reaching $158B in 2025, and numerous CVEs across platforms including Trend Micro, Cisco ISE, Veeam, and GitLab.