Security Unlocked

Threat Intelligence

Threat Intelligence

AI Scanning Broke Patch Tuesday. Gold Eagle Is Washington's Admission It Can't Keep Up.

Microsoft's July Patch Tuesday landed at 570 CVEs with two actively exploited zero-days, more than four times the forecasted volume, because AI code scanning is now generating vulnerabilities faster than the industry can triage them. Gold Eagle is the government's acknowledgment that the system is breaking.

Threat Intelligence

The Agent Approved It Anyway

GhostApproval exposed a symlink trust-boundary flaw across six AI coding assistants simultaneously, and the four different vendor responses reveal something more important than the vulnerability: there is no shared security contract governing what these tools are allowed to do.

Cyber Strategy

Threat Economics: Week of July 6-12, 2026

CISA's first AI agent platform KEV addition and JADEPUFFER's autonomous kill chain collapsed the distinction between AI tooling and production infrastructure, repricing that risk across federal procurement, cyber insurance, and the identity security M&A market in a single week.

Threat Intelligence

Cloud VM Isolation Breaks at the Hypervisor; North Korean Actors Weaponize Maintainer Trust

CVE-2026-53359 (Januscape), a 16-year-old Linux KVM flaw enabling VM-to-host escape, landed patches July 4 while the North Korean PolinRider supply chain campaign hit 100+ legitimate packages through stolen maintainer credentials, graduating beyond typosquatting into a method that subverts the trust signals defenders rely on.

Threat Intelligence

The Pipeline Ran the Attack

AI workflow platforms are being deployed with developer-speed patching and no orchestration-layer instrumentation, and attackers have started treating them as production attack surfaces.

Cyber Strategy

Threat Economics: Week of June 30 - July 6, 2026

JADEPUFFER's autonomous kill chain hands AI security vendors a proof case worth hundreds of millions in accelerated spend, while the NAIC's own breach introduces a feedback loop that no existing insurance underwriting model has priced.

Threat Intelligence

Patch Tuesday Is Watching the Wrong Clock

Three confirmed pre-disclosure exploitation incidents this week reveal that patch-cycle hygiene cannot defend against attackers who operate on perimeter appliances for months before any advisory exists.

Cyber Strategy

Threat Economics: Week of June 22-28, 2026

Executive Order 14412's 2030 post-quantum deadline converts a planning item into a legal procurement mandate for federal contractors, while four months of undetected FortiGate compromise reveals a structural actuarial blind spot that cyber insurance underwriting has not priced.

Threat Intelligence

The Namespace Was the Credential

Three independent threat actors operating simultaneously on npm this week confirm that adversaries have collectively assessed its namespace trust model as a high-yield, structurally undefended attack surface.

Cyber Strategy

Threat Economics: Week of June 8 - June 14, 2026

CISA BOD 26-04's four-factor risk scoring model is a government-issued specification for the next generation of vulnerability management platforms, arriving the same week AI-assisted discovery permanently raised the baseline volume that specification must manage.

Threat Intelligence

The Registry Trusted the Token

GitHub OIDC trusted-publishing solved the stored-credential problem and created a new attack surface in the same motion: three independent actors exploited it in a single week, producing malicious packages carrying valid provenance attestations.

Cyber Strategy

Threat Economics: Week of June 2 - June 8, 2026

Three simultaneous EDR exploits expose a $16B cyber insurance underwriting assumption, while npm's collapse as trusted infrastructure validates the developer security VC thesis absorbing the most capital in Q1 2026.

Threat Intelligence

The Agent Trusts the Answer

Two CVSS 9.8 vulnerabilities this week share an identical root cause: AI agent frameworks treat LLM output as safe to execute, the same cognitive error that produced SQL injection in 2003.

Cyber Strategy

Threat Economics: Week of May 26 - June 1, 2026

The TeamPCP campaign's full-stack attack on API keys, CI/CD tokens, and developer credentials is simultaneously the proof point for a $24.6 billion NHI acquisition wave and a live stress test of cyber insurance policy language that wasn't written to cover it.

Threat Intelligence

The Threat Actor Is a Fiction: Why Attribution's Core Unit Is Breaking

M-Trends 2026 shows the median time between initial access and downstream handoff dropped to 22 seconds. That number is not primarily a detection challenge. It is an epistemological one. The 'threat actor' as an analytical unit is becoming structurally incoherent, and attribution methodology has not caught up.

Cyber Strategy

Threat Economics: Week of May 11 - May 17, 2026

APT45's confirmed AI-generated zero-day hands the autonomous security testing market its validation receipt, while simultaneous supply chain attacks on AI developer packages tell investors exactly which environments adversaries have already priced as high-value targets.

Threat Intelligence

Three Point One

When a vulnerability transmits your database credentials to a third-party endpoint by design and scores CVSS 3.1, the problem is not the vulnerability, it is the triage system that will deprioritize it.

Threat Intelligence

Developer Workstations Are the New Beachhead

Three independent threat campaigns in early 2026 (the North Korea-attributed Contagious Interview operation, the GlassWorm Zig-dropper IDE extension malware, and the TeamPCP cascading supply chain compromise) converged on the same conclusion: developer workstations are now the highest-value initial access target in enterprise environments. The convergence is a price signal, not a coincidence.

Threat Intelligence

The Agent Trusts the Output

Eight AI agent frameworks disclosed the same class of remote code execution vulnerability in a single week because the entire ecosystem shares a cognitive failure: treating LLM output as trusted data rather than untrusted instructions.

Cyber Strategy

Threat Economics: Week of May 4-10, 2026

Eight AI agent framework RCEs in a single week, a first-ever AI proxy addition to CISA's KEV catalog, and CrowdStrike's $1.1 billion identity bet all converging in the same week signals that the agentic AI security market has moved from thesis to demonstrated demand.

Threat Intelligence

Palo Alto Captive Portal Zero-Day Under Active Chinese-Linked Exploitation, First Patches May 13

CVE-2026-0300 (CVSS 9.3) is an unauthenticated, root-level RCE in the PAN-OS User-ID Authentication Portal of PA-Series and VM-Series firewalls, under active exploitation by a likely China-aligned cluster Unit 42 tracks as CL-STA-1132. First hotfixes ship May 13. Anything with the Captive Portal exposed to untrusted networks needs immediate mitigation.

Cyber Strategy

Threat Economics: Week of April 27 - May 3, 2026

Eight AI agent framework CVEs in one week and ShinyHunters' no-exploit identity breach wave validate the two fastest-growing investment theses in cybersecurity, while CIRCIA's 316,000-entity reporting mandate positions a multi-year compliance procurement cycle.

Threat Intelligence

What the Model Returns, the Shell Executes

Eight AI agent frameworks disclosed the same architectural vulnerability in a single week, revealing that the AI agent ecosystem is repeating the early-web SQL injection era under exploitation timelines that leave no room to learn slowly.

AI Security

Invisible by Default: AI Middleware Is the New Soft Target

Three AI middleware vulnerabilities (LiteLLM, LeRobot, Entra Agent ID) hit the same architectural layer in the same week, all pre-auth or unauthenticated, with one being exploited thirty-six hours after disclosure. The seams of the AI stack are shipping faster than security teams can map them, and middleware that earns trust through utility is becoming the next high-value target.

Threat Intelligence

When the Security Tool IS the Supply Chain Attack

TeamPCP's supply-chain campaign has propagated from Trivy to Checkmarx KICS, Checkmarx GitHub Actions, two Open VSX plugins, and now Bitwarden CLI. Lapsus$ is handling the extortion. The blast radius now reaches a password manager with 10M+ users.

Threat Intelligence

AI Infrastructure Exploited Within 24 Hours of Disclosure

Four AI infrastructure platforms (Langflow, Marimo, LMDeploy, Flowise) were exploited within 24 hours of vulnerability disclosure last week. The patching window has collapsed to under one attacker shift.

Cyber Strategy

Threat Economics: Week of April 20-26, 2026

Adversaries exploited four AI platforms in under 24 hours each while $3.8B in Q1 cybersecurity capital concentrated 46% into AI security: the market validated the attack surface before defenders finished reading the advisories.

Threat Intelligence

Three Critical Exploits Hit Management Planes and Endpoints

Three critical vulnerabilities under active exploitation target FortiClient EMS, Adobe Acrobat Reader, and nginx-ui, collectively exposing enterprise management planes and endpoints to unauthenticated remote code execution.

Cyber Strategy

Threat Economics: Week of April 13-19, 2026

Weekly market intelligence: Linx Security's $50M identity bet, $4.62B in Q2 cybersecurity funding, and why NIS2 enforcement and CIRCIA deadlines are about to reshape enterprise buying criteria.

Threat Intelligence

The Protocol Is Doing Its Job

MCP's trust architecture makes any exposed management interface a pre-authenticated command shell by design, not by accident, and two RCE vulnerabilities in the same week reveal a deployment curve that has outrun both audit methodology and detection playbooks.

Cyber Strategy

Threat Economics: Week of April 6-12, 2026

Weekly market intelligence: Anthropic's $100M Glasswing commitment, the FBI's $21B cybercrime figure, and why developer security tooling is the next VC cycle.

Threat Intelligence

Mythos Finds Zero-Days. npm Found Three More.

The same week Anthropic unveiled an AI that autonomously finds zero-days, its own CLI shipped a CVSS 9.8 command injection, exposed by a debugging artifact that had been sitting in an npm package since March 31.

Threat Intelligence

Trust Is the Exploit

From a six-month DPRK social engineering operation to mass exploitation of developer ecosystems, this week's threat landscape reveals that the most reliable attack surface is the trust we extend by default.

Threat Intelligence

The Mental Model Is the Vulnerability

Five AI infrastructure disclosures in one day share the same root cause: the gap between what users believe their security settings do and what the framework actually executes.

Threat Intelligence

Trust Is the Attack Surface

Every major incident this week exploited institutional or interpersonal trust rather than technical vulnerabilities. The adversary's target is not the system. It is the relationship.

Cyber Strategy

Are Hacktivists Going Out of Business? Or Just Out of Style

Infosecurity Magazine ·

Hacktivism hasn't disappeared; it has been absorbed into the cybercrime economy and repurposed as cover for state-sponsored operations, forcing defenders to rethink how they assess ideologically motivated threats.

Cyber Strategy

2026 Security Predictions: Are You Prepared?

Quoted on why enterprises must adopt nation-state-grade defenses as APT groups increasingly target private-sector companies for economic disruption, IP theft, and geopolitically aligned espionage.

AI Security

AI Agents Are Mapping Your Organization

AI Journal ·

Automated reconnaissance agents now profile entire organizations in minutes, compiling dossiers from public sources faster and more comprehensively than ever before, reshaping how defenders must think about information exposure.