![Cybersecurity News | Daily Recap [02 Jun 2026]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [02 Jun 2026]")
Daily Recap, Anthropic expanded Project Glasswing (Mythos) access to 150 more organizations focused on critical infrastructure, while Meta AI was reportedly abused to hand over high-profile Instagram accounts in AI-assisted support flows. The roundup also covered a Red Hat npm supply-chain compromise tied to the Miasma campaign, active exploitation of Palo Alto Networks flaw CVE-2026-0257, and threats ranging from ClickFix/FakeUpdate site hijacking to the dismantling of a 17-million-device Dutch botnet. #ProjectGlasswing #Mythos #Anthropic #MetaAI #Instagram #RedHat #npm #Miasma #CVE-2026-0257 #PaloAltoNetworks #HPVoIP #WPMapsPro #WordPress #ClickFix #FakeUpdate #Dutch #Botnet #DragonWeave #CzechRepublic #Taiwan #ZeroKnowledge #Dragos #xIoT #Phosphorus #TinaPeters #USPS #Trump #Microsoft #Office #Teams
AI & Access
- Anthropic expanded Project Glasswing / Mythos access to 150 more organizations focused on critical infrastructure, widening availability of its Claude-based security tooling. β Glasswing Access, Mythos Access
- Meta AI was abused to hand over high-profile Instagram accounts to hackers, highlighting new account-takeover risks in AI-assisted support flows. β Meta AI
- The weekly roundup highlighted a wave of AI-powered attacks, alongside fresh exploits and OAuth phishing campaigns. β Weekly Recap
Supply Chain & Developer Threats
- A Red Hat npm supply-chain compromise hit 32 packages and, in the related Miasma campaign, used a credential-stealing worm to target developer secrets and CI/CD environments. β 32 Packages, Miasma Attack, Red Hat npm
- Dashlane said brute-force attacks caused limited encrypted vault downloads and user lockouts, while the incident underscored password-manager hardening concerns. β Dashlane Vaults, Dashlane Lockouts
Vulnerabilities & Exploitation
- HP VoIP phones contain a critical flaw that can enable enterprise network breaches if left unpatched. β HP VoIP Flaw
- Attackers are actively exploiting a Palo Alto Networks defect, CVE-2026-0257, after the issue initially flew under the radar. β Palo Alto CVE
- WP Maps Pro is being exploited to take over WordPress sites, while another campaign hides malware payloads in Steam profiles. β WP Maps Pro, Steam Payloads
- Windows Netlogon faces renewed attacker interest, with a critical vulnerability now in hackersβ crosshairs. β Netlogon Flaw
- Security reporting also flagged a newly discussed Linux flaw and broader urgency around faster vulnerability alerts. β Faster Alerts, Linux Flaw
Malware & Botnets
- Hackers hijacked thousands of websites for ClickFix and FakeUpdate attacks, spreading social-engineering payloads at scale. β ClickFix/FakeUpdate
- Dutch police dismantled a massive 17-million-device botnet, marking one of the largest takedowns in recent memory. β Botnet Takedown
Nation-State & Crime
- China-aligned groups stepped up activity, with Dragon Weave hitting targets in the Czech Republic and Taiwan. β Dragon Weave
- Spain arrested a doxer accused of leaking sensitive data tied to government employees. β Spain Arrest
- The Zero-Knowledge threat actor case sparked debate over the end of responsible disclosure practices. β Zero-Knowledge
Industry & Policy
- Dragos acquired xIoT security firm Phosphorus to strengthen its industrial and connected-device security portfolio. β Dragos Buyout
- Tina Peters, convicted in an election-security breach, said she will continue her legal fight despite the caseβs fallout. β Tina Peters
- USPS is moving ahead with mail-in ballot changes as courts review a Trump election order, keeping election-process security in focus. β USPS Ballots
- Microsoft investigated Office apps and Teams file-access issues affecting users. β Office Issues