This week’s roundup covers a range of notable incidents, from a Tennessee hacker’s probation and a major French state agency breach to warnings about state-linked botnet infrastructure and misconfigurations at prominent tech firms. Key developments include Volt Typhoon’s router botnet, unauthorized access to Anthropic’s Claude Mythos, Lovable’s BOLA exposure, the UK’s SilentGlass hardware guard, and the withdrawal of a CISA director nominee. #NicholasMoore #SupremeCourtEfiling #VoltTyphoon #ClaudeMythos #Lovable #FranceTitres #SilentGlass #CISA
Keypoints
- Nicholas Moore received 12 months probation after using stolen credentials to access the Supreme Court e‑filing system and other government systems.
- The UK deployed military assets to protect undersea communication cables and urged network resilience through route diversity.
- Startup Lovable mishandled a BOLA vulnerability that exposed source code, credentials, and chat history for free accounts.
- A joint advisory warns that Volt Typhoon leverages a massive botnet of compromised SOHO routers and IoT devices to target critical infrastructure.
- Other notable items include unauthorized access to Anthropic’s Claude Mythos, a France Titres breach affecting millions, the CISA nominee withdrawal, and Google’s expanded enterprise security controls.