This week’s SecurityWeek roundup covers notable developments across AI risks, new malware, major breaches, and industry responses shaping the threat landscape. Key items include Fed discussions about Anthropic’s Mythos, the NotnullOSX mac stealer targeting crypto wallets, high-profile law firm and platform breaches, a leaked BlueHammer zero-day, and accelerated post-quantum work by Cloudflare. #Mythos #NotnullOSX
Keypoints
- Fed leaders met major US banks to discuss cyber risks posed by Anthropic’s Mythos AI model.
- The NotnullOSX macOS stealer targets users holding over $10,000 in cryptocurrency via malicious DMG files and Full Disk Access requests.
- The Silent Ransom Group (aka Luna Moth) breached Jones Day and leaked client records after a failed $13 million ransom demand.
- A researcher released the BlueHammer Windows zero-day exploiting a Microsoft Defender race condition to gain SYSTEM privileges.
- Cloudflare moved its full post-quantum security deadline to 2029 following new research and Google’s quantum-related findings.