Unauthorized Group Accesses Anthropic’s Mythos Security Tool Vercel Breached via Compromised Google Workspace OAuth App Canada’s Liberals Move to Revive Online Speech Legislation Crypto Scam Targets Shipping Chaos in Strait of Hormuz Mastodon and Bluesky Hit by DDoS Attacks in Rapid Succession Ethereum gateway domain hijacked on our watch

In this issue:

Unauthorized Group Accesses Anthropic’s Mythos Security Tool Vercel Breached via Compromised Google Workspace OAuth App Canada’s Liberals Move to Revive Online Speech Legislation Crypto Scam Targets Shipping Chaos in Strait of Hormuz Mastodon and Bluesky Hit by DDoS Attacks in Rapid Succession Ethereum gateway domain hijacked on our watch

Internet Content Regulation is Coming To Canada Court Orders OpenAI to Block User in ChatGPT Case Raising Free Speech Concerns Fake Claude “Pro” Site Spreads PlugX Malware via DLL Sideloading n8n Abuse Turns Workflow Automation Tool into Phishing and Malware Delivery Channel AI Agents in GitHub Actions Bypassed via Prompt Injection Fake Microsoft Update Campaign Drops Stealth Infostealer via Electron and Python Chain

In this issue:

Internet Content Regulation is Coming To Canada Court Orders OpenAI to Block User in ChatGPT Case Raising Free Speech Concerns Fake Claude “Pro” Site Spreads PlugX Malware via DLL Sideloading n8n Abuse Turns Workflow Automation Tool into Phishing and Malware Delivery Channel AI Agents in GitHub Actions Bypassed via Prompt Injection Fake Microsoft Update Campaign Drops Stealth Infostealer via Electron and Python Chain

In this issue:

Project Glasswing: Industry Coalition Uses AI to Strengthen Cybersecurity Alberta Bill 23 Targets Political Deepfakes, Expands Petition Limits LinkedIn Faces Legal Action Over Covert Browser Scans AI Agent Banned from Wikipedia Sparks Controversy Hack-for-Hire Campaign Targets Journalists and Officials in Middle East

In this issue:

Project Glasswing: Industry Coalition Uses AI to Strengthen Cybersecurity Alberta Bill 23 Targets Political Deepfakes, Expands Petition Limits LinkedIn Faces Legal Action Over Covert Browser Scans AI Agent Banned from Wikipedia Sparks Controversy Hack-for-Hire Campaign Targets Journalists and Officials in Middle East

Age Verification Laws Reshape the Internet Anthropic’s Claude Code Source Leaked Again Axios Supply Chain Attack Exposes Malicious NPM Dependency Copilot Injects Ads Into Pull Requests as AI’s Subsidy Era Ends Dutch Finance Ministry Cyberattack Disrupts Treasury Portal for 1,600 Public Institutions

In This Issue:

Age Verification Laws Reshape the Internet Anthropic’s Claude Code Source Leaked Again Axios Supply Chain Attack Exposes Malicious NPM Dependency Copilot Injects Ads Into Pull Requests as AI’s Subsidy Era Ends Dutch Finance Ministry Cyberattack Disrupts Treasury Portal for 1,600 Public Institutions

Apple Becomes the UK Government’s Favorite Compliance Officer easyDNS releases MCP server and skills for AI agents The Petabyte Pivot: Why Your Anime Habits are Now a Telco Tragedy DarkSword iOS Exploit Leaked, Threatening Older Apple Devices Critical PyPI Attack Compromises litellm 1.82.7–1.82.8 AI Agents Bypass Security Controls, Raise Insider Threat Concerns

In this issue:

Apple Becomes the UK Government’s Favorite Compliance Officer easyDNS releases MCP server and skills for AI agents The Petabyte Pivot: Why Your Anime Habits are Now a Telco Tragedy DarkSword iOS Exploit Leaked, Threatening Older Apple Devices Critical PyPI Attack Compromises litellm 1.82.7–1.82.8 AI Agents Bypass Security Controls, Raise Insider Threat Concerns

In this issue:

Canada Introduces Bill C-22 For Mandatory Metadata Retention Meta is Ending Instagram Direct Message End-to-End Encryption Invisible Unicode Supply-Chain Attack Hits GitHub Ecosystem Claudy Day: Claude AI Vulnerability Risks Data Theft iPhone Exploit Kit DarkSword Steals Data Worldwide FBI Confirms Purchase of Americans’ Location Data

https://www.youtube.com/watch?v=Ur8cyfPx77M

In this issue:

Canada Introduces Bill C-22 For Mandatory Metadata Retention Meta is Ending Instagram Direct Message End-to-End Encryption Invisible Unicode Supply-Chain Attack Hits GitHub Ecosystem Claudy Day: Claude AI Vulnerability Risks Data Theft iPhone Exploit Kit DarkSword Steals Data Worldwide FBI Confirms Purchase of Americans’ Location Data

Canada Allows TikTok to Continue Operations with New Safeguards Russian government hackers targeting Signal and WhatsApp users, Dutch spies warn AI Misstep Wipes Years of Website Data Chrome Gemini Panel Vulnerability Exposed SSL Certificate Lifetimes Are Shrinking: What the New 47-Day TLS Certificate Rules Mean

In this issue:

Canada Allows TikTok to Continue Operations with New Safeguards Russian government hackers targeting Signal and WhatsApp users, Dutch spies warn AI Misstep Wipes Years of Website Data Chrome Gemini Panel Vulnerability Exposed SSL Certificate Lifetimes Are Shrinking: What the New 47-Day TLS Certificate Rules Mean

Meta Ray-Ban Glasses Footage Sent to Human Reviewers Israel Allegedly Hacks Iranian Prayer App to Push Wartime Messages Canadian Tire Data Breach Hits Millions FULCRUMSEC Claims Major LexisNexis Data Breach California Mandates Device-Level Age Tracking The Government Wants an AI With No Guardrails. What Could Go Wrong?

In this issue:

Meta Ray-Ban Glasses Footage Sent to Human Reviewers Israel Allegedly Hacks Iranian Prayer App to Push Wartime Messages Canadian Tire Data Breach Hits Millions FULCRUMSEC Claims Major LexisNexis Data Breach California Mandates Device-Level Age Tracking The Government Wants an AI With No Guardrails. What Could Go Wrong?

OpenAI Flagged Tumbler Ridge Shooter’s Chat Sessions, But Did Nothing GitLab Disrupts North Korean “Contagious Interview” and Fake IT Worker Networks DJI Robot Vacuum Flaw Exposed 7,000 Homes Google Patches First Chrome Zero-Day of 2026 UK Fines Reddit Over Child Data and Age Verification

In this issue:

OpenAI Flagged Tumbler Ridge Shooter’s Chat Sessions, But Did Nothing GitLab Disrupts North Korean “Contagious Interview” and Fake IT Worker Networks DJI Robot Vacuum Flaw Exposed 7,000 Homes Google Patches First Chrome Zero-Day of 2026 UK Fines Reddit Over Child Data and Age Verification

Apple Patches Actively Exploited Zero-Day Across Devices Montreal Fake ID Lab Busted, Thousands of Identities Stolen Microsoft 365 Copilot Bug Summarizes Confidential Emails U.S. Law Firm Sues Lenovo Over Data Transfers to China