INTELLIGENCE BRIEFS

Zoom CISO Emphasizes AI as Security Enabler, Not Role‑Replacer, for Global Video Platform

Phishing‑as‑a‑Service Kit Kali365 Expands to AWS, Okta, and Russian Platforms, Raising Credential‑Theft Risk

DriveSurge Hijacks Thousands of Sites to Deliver ClickFix and FakeUpdate Malware

China Deploys Dual‑Method Spear‑Phishing Campaign Using Azureveil Malware Against Czech Entities

AI Agents with Unrestricted Access Pose Rogue Threats to Enterprises

Slovenian National CERT Handles 6,000 Cyber Incidents Annually, Extending Support to Critical Private‑Sector Operators

Open Detection Format (ATR) Empowers Early Detection of AI Agent Threats Across SaaS Supply Chains

CISOs Urged to Initiate Post‑Quantum Crypto Migration Within 24 Months to Mitigate Future Data Decryption Threats

80% of Organizations Hit by Application Security Incidents Stemming from Known Vulnerabilities

Microsoft Releases Coreutils for Windows, Adding Native Linux Commands to the OS

OpenAI Upgrades GPT‑5.5 and Retires Legacy ChatGPT Models, Impacting API Consumers

Critical Kirki Plugin Flaw (CVE‑2026‑8206) Enables WordPress Admin Account Hijack

WeedHack Malware Campaign Infects Over 116,000 Minecraft Systems, Harvesting Credentials and Crypto Wallets

AI‑Built Ransomware Toolkit Automates EDR Evasion and AD Discovery, Threatening Enterprise Defenses

White House Issues Revised AI Executive Order Reducing Review Period to 30 Days

Red Hat npm ‘Miasma’ Campaign Uses Preinstall Scripts to Steal Developer Credentials

Instagram AI Support Chatbot Flaw Enables Credential Hijacks of High‑Profile Accounts

Critical Remote Access Vulnerability in Oracle WebLogic Server (CVE‑2024‑21182) Added to CISA KEV Catalog

Fake ChatGPT Desktop App Ads Distribute Password‑Stealing Malware via Malvertising

Microsoft Deploys MDASH: 100+ AI Agents to Cut Vulnerability Noise and Accelerate Remediation