Inlay

Phishing volume is down 20%, but risk is rising as attackers shift to targeted, higher-conversion campaigns, use cloud infrastructure like AWS, and drive sharper losses in services and government. #Canada #AWS #Phishing

Charisma Media in the US is reportedly facing a ransomware incident attributed to Securotrop, with 808 GB claimed impacted and the case still awaiting verification. #UnitedStates #Ransomware #CharismaMedia

ShinyHunters claims a breach of the Council of Europe, exposing 297 GB of HR and payroll data, including 409,000+ payslips and 14,000+ CVs. #France #DataBreach #CouncilOfEurope

Claude Desktop connected to an MCP Kali Server to orchestrate a full lab pentest with Nmap, sqlmap, Hydra, Metasploit, John the Ripper, WPScan, and NetExec, ending in root, WordPress, and domain admin access. #ClaudeDesktop #Metasploit #WPScan

U.S. export controls are pushing Fable 5 and Mythos 5 toward KYC access, but stolen sessions, synthetic identities, and pre-verified accounts may still let cybercriminals in. #USA #AI #KYC

Mythos 5 marks a major shift in cybersecurity: AI can now find and exploit vulnerabilities at unprecedented speed, and rivals like OpenAI and Grok may soon match it. #Mythos #Anthropic #OpenAI

CISA pushed urgent Ivanti patching, Oracle fixed a PeopleSoft zero-day tied to data theft, and Microsoft resolved Windows update failures. Breaches also surfaced at Novo Nordisk and tchap, plus threats linked to Handala and Void Blizzard. #France

Former IT employee Ezekiel Dean Potter was sentenced to 21 months in prison for hacking his ex-employer, deleting accounts and disrupting classes. He will pay restitution after causing tens of thousands in damage. #SaydelSchools #EzekielPotter #Iowa

Tengu Ransomware emerged as a disciplined RaaS group, using double extortion, custom tools, and Tor-based leak sites to hit about 50 victims before rebranding as Shisa in March 2026. #TenguRansomware #ShisaRansomware #RansomwareAsAService

Anthropic disabled Fable 5 and Mythos 5 after the US Commerce Department ordered foreign access cut over a reported jailbreak tied to national security concerns. Access restoration is underway. #Anthropic #USA #AIPolicy

Tengu Ransomware emerged as a disciplined RaaS operation that used double extortion, custom tooling, and affiliate management to claim about 50 victims before rebranding as Shisa Ransomware in March 2026. Its activity spanned multiple regions and relied on Tor-based leak infrastructure, intermittent encryption, and tools such as StealTENGU, StealTG, and NetExec to steal data, disable defenses, and pressure victims to pay. #TenguRansomware #ShisaRansomware #StealTENGU #StealTG

This article describes an end-to-end lab penetration test orchestrated through Claude Desktop connected to an MCP Kali Server, where natural-language prompts drove tools like Nmap, sqlmap, Hydra, Metasploit, John the Ripper, WPScan, and NetExec. The attack chain moved from reconnaissance and exploitation to root access, WordPress compromise, and domain administrator credential recovery on a Windows Server 2019 domain controller. #ClaudeDesktop #MCPKaliServer #Metasploit #sqlmap #Hydra #JohnTheRipper #WPScan #NetExec #Samba #WordPress #WindowsServer2019

The article argues that Mythos represents a real shift in cybersecurity, driven by new AI models that can discover and exploit vulnerabilities at unprecedented speed. It warns that major AI vendors such as OpenAI, Grok, and Chinese AI companies will soon reach similar capabilities, compressing timelines for both defense and offensive exploitation. #Mythos #Anthropic #OpenAI #Grok

Daily Recap, urgent patching focus returned as CISA directed federal agencies to address actively exploited Ivanti issues, while Oracle mitigated a PeopleSoft zero-day tied to data theft and Microsoft resolved Windows update failures linked to the WUSA installer. Across breaches and espionage, Novo Nordisk disclosed clinical trials exposure, tchap accounts were reported as affected in France, and threat activity included Iran’s Handala claiming access to Cal Water and Russia’s Void Blizzard facing charges, with ShinyHunters also linked to PeopleSoft exploitation. #Ivanti #CISA #Oracle #PeopleSoft #WUSA #NovoNordisk #tchap #Maine #Handala #CalWater #VoidBlizzard #ShinyHunters #Europol #AudiA6 #ClaudeFable5 #Anthropic #CyberCorps

The shinyhunters ransomware group compromised coe.int in France, exposing over 297 GB of Council of Europe HR and payroll data across multiple directorates and services, including 409,000+ payslips, 14,000+ CVs, and extensive personal, financial, tax, bank, and employment records. This is a final warning dated 14 June 2026 to contact them by 16 June 2026 to avoid data leakage and related digital issues. #France

A former IT employee, Ezekiel Dean Potter, was sentenced to 21 months in prison for a prolonged campaign against the Saydel Community School District that deleted accounts, disrupted classroom operations, and caused tens of thousands of dollars in damage. Prosecutors said he kept using retained credentials after leaving the district, targeted services including Apple School Manager, Schoology, Gmail, and Facebook, and will now pay restitution and face supervised release. #SaydelCommunitySchoolDistrict #EzekielDeanPotter #AppleSchoolManager #Schoology #Google #GoDaddy #CaseysStoreSupportCenter #ThePrinterInc

Zscaler’s 2026 phishing report says phishing volume is falling, but attackers are shifting to more targeted, higher-conversion campaigns that cause greater losses. Phishers are also increasingly using cloud infrastructure, especially AWS, while countries like Canada and Spain saw major drops in activity and the services and government sectors saw sharp increases. #Zscaler #AWS #FBI #ChatGPT

The U.S. government ordered Anthropic to suspend foreign access to Fable 5 and Mythos 5 after citing a national security concern tied to a reported jailbreak method that could bypass their safety limits. Anthropic disabled the models, disputed the severity of the finding, and said it is working to restore access as soon as possible. #Anthropic #Fable5 #Mythos5 #HowardLutnick #DarioAmodei

Charisma Media in the US is reported to be facing a ransomware incident attributed to the securotrop threat actor, with the case currently marked as AWAITING. The claimed impact size is 808 GB and remains under investigation. #UnitedStates

U.S. export controls on Fable 5 and Mythos 5 are pushing frontier AI labs toward KYC-based access controls, but cybercriminals are already preparing to bypass them with stolen sessions, synthetic identities, and pre-verified accounts. The shift could also create new high-value targets for data theft, since AI platforms may have to store passports, biometrics, and other sensitive documents that attackers can later exploit. #Fable5 #Mythos5 #Claudeai #OpenAI #Lumma #Vidar #RedLine #HudsonRock #ZachXBT