Cybersecurity News | Daily Recap [26 May 2026]

AI Security

• AppOmni launched Marlin AI to automate SaaS security investigations and speed up threat analysis – Marlin AI
• Varonis Atlas added Claude Compliance API integration to improve AI governance and compliance controls – Claude API

Threat Activity

• An Iranian APT used updated tools to target aviation and software companies in a likely espionage campaign – Iranian APT
• Authorities in the Netherlands arrested admins of a bulletproof hosting service tied to Russian hackers, disrupting infrastructure used for cybercrime – Hosting Arrests
• Lithuania suspects foreign involvement in a leak of more than 600,000 national register entries, raising concerns about state-linked data theft – Lithuania Leak

Vulnerability Patching

• CISA ordered federal agencies to patch an actively exploited Drupal vulnerability, highlighting urgent exposure management needs – Drupal Patch
• Microsoft Defender can now automatically isolate hacked endpoints to contain incidents faster – Defender Isolate
• Microsoft also warned that Domain Controller lookup may fail on Windows Server 2016, potentially affecting enterprise authentication workflows – Server 2016

Data Breaches

• 7-Eleven disclosed a data breach affecting about 185,000 people, exposing personal information in a major retail incident – 7-Eleven Breach, 7-Eleven Impact

Security Operations

• A webinar warned that too many tools are slowing network incident response, underscoring the need for streamlined security operations – Incident Response

Cybersecurity News | Daily Recap – hendryadrian.com