Inlay

AuditTeam claims ransomware activity against I-***YS in Russia, saying encrypted or stolen data may be exposed. #Russia #Ransomware #AuditTeam

Weekly threat recap: supply-chain intrusions, Microsoft token phishing, cloud and identity abuse, plus ransomware and extortion cases. Also covered defenses tied to CVE-2026-46316. #ShaiHulud #EntraID #Ransomware

Frey.com, the Switzerland-based eco-friendly laundry care company, suffered a ransomware attack attributed to krybit, disrupting systems and requiring file remediation. #Switzerland #Ransomware #Frey

U.S. export controls forced Anthropic to restrict Fable 5 and Mythos 5 access for foreign nationals, while Chinese-linked actors and Arch Linux AUR hijacks fueled stealthy auth theft and rootkits. #Anthropic #China #Linux

Blue Nile Medical Center in the US was hit by the nightspire ransomware group, encrypting systems and exposing over 3,000 patient EHR records. #UnitedStates #Healthcare #Ransomware

A June 12 directive forced Anthropic to disable Claude Fable 5 and Mythos 5 worldwide after a jailbreak exposed code flaws, with deemed-export rules making global shutdown the compliant response. #Anthropic #ExportControl #USCommerce

FBI, Google, and Black Lotus Labs dismantled Outsider Enterprise, a Chinese AI-powered phishing service behind SMS scams, fake sites, and stolen card data tied to billions in losses. #FBI #Google #China

Daily Recap, U.S. export controls compelled Anthropic to take Fable 5 and Mythos 5 offline for foreign nationals, underscoring tighter access to advanced AI models. Elsewhere, Chinese-linked actors showed long-running stealth in an authentication hijack and Linux backdoor campaigns, while Arch Linux AUR package hijacking pushed an infostealer and eBPF rootkit. #Anthropic #Fable5 #Mythos5 #Fable5 #Mythos5 #AuthHijack #LinuxBackdoor #ArchLinuxAUR #eBPF #Conti #ShinyHunters #OraclePeopleSoft #Coupang #23andMe #phpBB #FISA #DeepfakePornSite

Blue Nile Medical Center in the US was targeted by the nightspire ransomware threat actor, resulting in the compromise and encryption of systems. The incident exposed more than 3,000 patient EHR records. #UnitedStates

Ransomware claim hits Balai Besar POM di Bandung, Indonesia. Actor nova alleges data theft from the food and drug regulator and offers samples to prove access. #Indonesia #Bandung #Ransomware

EU and UK regulators advanced new rules on GDPR breaches, AI content labeling, IoT, and data intermediaries, while France, Malta, New York, and Colorado updated privacy and AI oversight. #EU #France #AIRegulation

Dragonforce claims a ransomware attack on INK, the London-based CGI, animation, and retouching studio. The alleged incident may have disrupted operations in the United Kingdom. #UnitedKingdom #Ransomware #INK

The ransomware claim targets Balai Besar POM di Bandung in Indonesia, a regulatory body supervising food and drugs, where nova is alleged to have stolen data and pressured the organization for access. The threat actor is said to provide tree and samples from the stolen information when the victim contacts the support department, impacting Indonesia. #Indonesia

In June 2024, the threat actor dragonforce claimed to have deployed ransomware against INK, an award-winning London-based CGI, animation, and retouching production studio serving film, print, and interactive platforms. The claim indicates disruption to INK’s operations in the impacted country: #UnitedKingdom

Cybersecurity Threat Research 'Weekly' Recap. This week covered supply-chain and developer-focused intrusions (Shai-Hulud, Mini Shai-Hulud/Miasma/Hades, UNK_DeadDrop, GoFlateLoader) plus phishing and social-engineering campaigns that targeted Microsoft account tokens, social-media lure downloads, and FIFA/World Cup 2026 fraud kits. It also highlighted cloud/identity abuse and enterprise compromises (Entra Agent ID blueprint abuse, Azure DNS takeover, Duo Auth Proxy exposure, PulseRAT, MLTBackdoor) alongside ransomware/extortion/data theft cases (Tengu/Shisa, ShinyHunters) and defenses tied to flaws like ITScape (CVE-2026-46316).

AuditTeam claims ransomware activity against I-***YS in Russia, threatening to disrupt access to encrypted or stolen data. The impacted country(s) is Russia#RU

On June 12, 2026, a US export control directive forced Anthropic to disable Claude Fable 5 and Mythos 5 worldwide after a narrow jailbreak was found that made the models reveal code flaws. The shutdown was driven by deemed-export rules that treat model output shown to a foreign national as an export, making a global off switch the only compliant option. #Anthropic #ClaudeFable5 #Mythos5 #DeemedExport #USCommerce

frey.com, a Switzerland-based FREY (Frey Brothers, Inc.) eco-friendly laundry care products company, suffered a ransomware incident attributed to the krybit threat actor. The attack impacted the availability of affected systems and data, with encrypted files requiring remediation; #Switzerland

The FBI, Google, and Black Lotus Labs dismantled Outsider Enterprise, a Chinese phishing-as-a-service operation that used AI and distributed kits to steal credit card data and passwords through massive SMS campaigns. The takedown, part of Operation Riptide, targeted infrastructure linked to millions of fraudulent URLs, 3.8 million stolen credit card records, and billions in losses. #OutsiderEnterprise #OperationRiptide #Google #FBI #ATT #TMobile #Verizon

EU and UK regulators have introduced or consulted on major updates covering GDPR breach notifications, AI-generated content labeling, consumer IoT, and data intermediary services, while France and Malta issued new guidance on electronic communications and AI governance. In the US, New York advanced rules on surveillance pricing and health information privacy, Colorado enacted conversational AI safety requirements, and Anthropic said a government directive forced suspension of Fable 5 and Mythos 5 access for foreign nationals. #EDPB #GDPR #EUAIAct #CNIL #ICO #MFSA #NewYork #Colorado #Anthropic #Fable5 #Mythos5