We May Be Living Through the Most Consequential Hundred Days in Cyber History
4 hours ago
- #Cybersecurity
- #Geopolitical Cyberattacks
- #AI Threats
- The first four months of 2026 have witnessed an unprecedented wave of cyber incidents, including state-sponsored attacks, criminal alliances, and supply chain compromises, yet public discourse has remained surprisingly quiet.
- Four major threat clusters emerged: Iran-linked destructive operations (e.g., Stryker wiper, FBI Director's email leak); Scattered LAPSUS$ Hunters (SLH) alliance targeting SaaS platforms (e.g., Salesforce mega-breach affecting ~400 organizations); North Korean open-source supply chain attacks (e.g., Axios npm hijack); and Russian APT28 exploiting zero-days against Ukraine and EU.
- AI-driven threats have surged, with phishing emails containing AI content up 1,265% since 2023, and AI models like Anthropic's Mythos identifying thousands of zero-days, prompting an urgent meeting between U.S. Treasury, Federal Reserve, and major bank CEOs.
- Notable incidents include the breach of Mercor, a $10B AI training-data vendor serving OpenAI, Anthropic, and Meta, via a LiteLLM supply chain attack; a claimed 10 petabyte exfiltration from China's National Supercomputing Center; and aviation disruptions across Europe due to cyberattacks on IT systems.
- The silence in public conversation contrasts with high-level private concerns, highlighting a disconnect between mainstream coverage and the severity of these events, which may stem from attribution complexities, industry discomfort, public fatigue, or the awkward overlap with AI-powered defense narratives.