[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuK-2iQSE-IWtMCQhfjbSe9TH4Kjx_SQULkG5zYPfsXU":3},{"article":4,"iocs":58},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":32,"category":33,"article_tags":37},"2e64f2e2-8225-48bb-bd44-e45408bbddd5","In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs","in-other-news-chinese-mythos-like-ai-tata-electronics-breach-snyk-layoffs-0ab149","Other noteworthy stories that might have slipped under the radar: Russia used Cellebrite to hack activist’s phone, Five Eyes issue urgent AI threat warning, macOS Gaslight backdoor, Scattered Spider guilty pleas. The post In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs appeared first on SecurityWeek.","SecurityWeek's weekly roundup covers multiple critical incidents: Russian authorities used Cellebrite to breach an activist's iPhone; Scattered Spider members pleaded guilty to the 2024 Transport for London attack; Tata Electronics suffered a major breach exposing 630GB of Apple and Tesla proprietary data. Additionally, the Five Eyes coalition warned that advanced AI is compressing threat timelines, the White House requested OpenAI delay GPT-5.6 deployment, and a sophisticated macOS backdoor attributed to North Korea was discovered.","SecurityWeek roundup: Russia's Cellebrite surveillance, Scattered Spider guilty pleas, Tata Electronics breach, Five","SecurityWeek’s weekly cybersecurity news roundup offers a concise overview of important developments that may not receive full standalone coverage but remain relevant to the broader threat landscape. This curated summary highlights key stories across vulnerability disclosures, emerging attack methods, policy updates, industry reports, and other noteworthy events to help readers maintain a well-rounded awareness of the evolving cybersecurity environment. Here are this week’s highlights: Russia used Cellebrite software to hack activist’s phone An investigation by Citizen Lab confirmed that Russian authorities successfully used Cellebrite software to breach an iPhone belonging to opposition activist Andrey Pivovarov. Even though the surveillance vendor canceled its Russian contracts in 2021 prior to Pivovarov’s arrest, local agency documents prove that investigators used legacy setups to extract data from communication apps like Telegram and WhatsApp. Security researchers suspect that the harvested information was later weaponized by the state-backed threat group ColdRiver to launch targeted phishing campaigns against the activist’s associates. Advertisement. Scroll to continue reading. Scattered Spiders hackers plead guilty Two British men connected to the Scattered Spider group changed their pleas to guilty regarding the 2024 compromise of Transport for London. The intrusion disrupted automated fare refund systems and administrative networks, inflicting millions in remediation costs and operational losses. All 28,000 agency employees were forced to undergo mandatory in-person password resets to re-secure the environment. Apple and Tesla secrets allegedly exposed in Tata Electronics hack A major security incident at India-based Tata Electronics has culminated in the dark web leak of more than 630 GB of proprietary documentation. The extortion group World Leaks published the massive trove, which reportedly includes manufacturing specifications, component schematics, and confidential drawings belonging to major clients Apple and Tesla. Android developer verification A comprehensive Android developer identity verification framework is set to launch on September 30, 2026, across seven major app distribution platforms in select international markets before expanding globally next year. The security overhaul features new automated registration APIs alongside an advanced sideloading flow equipped with mandatory checkpoints to counter coercion scams. A new limited tier will allow hobbyists to distribute applications to a restricted number of devices. Five Eyes issue urgent AI threat warning The Five Eyes intelligence coalition has released a joint advisory warning that advanced artificial intelligence capabilities have compressed the threat timeline from years to months. By automating vulnerability research and exploit development, these frontier AI models democratize high-end offensive tools for lower-skilled cybercriminals and render traditional perimeter defenses obsolete. Executives and security leaders must transition to zero-trust architectures, accelerate patching protocols, and immediately decommission legacy infrastructure to withstand machine-speed intrusions. White House intervenes to restrict rollout of OpenAI model Federal officials have requested that OpenAI delay and tightly control the public deployment of its upcoming GPT-5.6 model due to national security concerns. Under this temporary arrangement, access during the initial preview phase will be vetted and approved on a client-by-client basis by government agencies. This intervention reflects intensifying state scrutiny over frontier models, following recent regulatory pressures that restricted Anthropic’s advanced AI. macOS.Gaslight malware linked to North Korea A sophisticated Rust-based backdoor targeting macOS has been found to incorporate adversarial prompt injection techniques designed to disrupt automated triage workflows. Attributed to North Korean threat actors, macOS.Gaslight embeds dozens of deceptive system error messages intended to trick LLM-assisted analysis tools into terminating their investigations. Beyond this novel defensive evasion mechanism, the malware features an interactive shell and data-harvesting capabilities. CISA prepares for massive recruitment push under new leadership candidate The Department of Homeland Security announced that a potential nominee has been selected to lead CISA, which has lacked a permanent director since January 2025. Once confirmed, the new leadership is slated to spearhead a recruitment drive for approximately 600 skilled professionals to rebuild a workforce recently depleted by federal downsizing. Chinese company’s Mythos-like AI The chief executive of blacklisted Chinese cybersecurity firm Qihoo 360 announced the creation of an advanced AI system named Tulongfeng. The company claims it can match the capabilities of prominent Western frontier systems such as Mythos and can be leveraged to breach corporate and government networks. The executive admitted that its AI itself might not be as powerful as Mythos, but Tulongfeng’s vulnerability-discovery capabilities are similar when paired with other Qihoo technologies. Snyk layoffs Snyk has laid off some of its employees as part of an organizational restructuring. The move includes aligning R&D around four areas and unifying them under one leader, “flattening leadership so decisions move faster”, and “unifying go-to-market”. The company has not disclosed the number of affected individuals, but Israeli media put the number at 90. Others reported that at least 200 employees have been terminated. According to its website, Snyk has more than 1,000 employees, but third-party sites report roughly 1,500 employees. Related: In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum Related: In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine Written By SecurityWeek News Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights. More from SecurityWeek News Philip Martin Joins Uber as Chief Information Security OfficerWebinar Today: Modern Exposure Validation in the AI EraIn Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS ContinuumWebinar Today: How Modern Breaches Bypass MFA and Evade DetectionEndpoint Security Startup Ent Emerges From Stealth With $100 Million Seed RoundIn Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang FineCISO Forum Webinar Today: 2026 Mid-Year ReviewA Security Raises $37 Million for Autonomous Offensive Security Platform Latest News Amazon Q Flaw Enabled Cloud Credential Theft via Malicious RepositoriesMore Klue Breach Victims Identified as Hackers Get HackedNebulock Raises $25 Million for AI-Native Contextual SecurityLinux Foundation Unveils New Open Source Security Project Akrites$3 Million Reportedly Stolen in Polymarket HackRussian APT Deploys ‘StockStay’ Backdoor Against Ukrainian TargetsFirst-Ever Exploitation of PTC Windchill Vulnerability Discovered in the WildNew Enterprise-Ready MCP Specification Brings New Security Challenges Trending Daily Briefing NewsletterSubscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Why Email Security Keeps Failing (And What Has to Change) July 8, 2026 Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more. Register Virtual Event: 2026 Cloud Security Summit July 16, 2026 This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and oth","https:\u002F\u002Fwww.securityweek.com\u002Fin-other-news-chinese-mythos-like-ai-tata-electronics-breach-snyk-layoffs\u002F","https:\u002F\u002Fwww.securityweek.com\u002Fwp-content\u002Fuploads\u002F2023\u002F10\u002Fcybersecurity-news.jpg","2026-06-26T14:30:00+00:00","2026-06-26T16:00:19.683229+00:00",8,[18,21,23,25,27,30],{"name":19,"type":20},"Cellebrite","vendor",{"name":22,"type":20},"Apple",{"name":24,"type":20},"Tesla",{"name":26,"type":20},"OpenAI",{"name":28,"type":29},"North Korea","threat_actor",{"name":31,"type":29},"Russia","e7b231c8-5f79-4465-8d38-1ef13aea5a14",{"id":32,"icon":34,"name":35,"slug":36},null,"Threat Intelligence","threat-intelligence",[38,43,48,53],{"category":39},{"id":40,"icon":34,"name":41,"slug":42},"2e06f76c-d5b9-4f54-9eef-4d3447b10730","Breaches","breaches",{"category":44},{"id":45,"icon":34,"name":46,"slug":47},"6cbdd207-aaa1-4176-9534-e156b125e917","Nation-state","nation-state",{"category":49},{"id":50,"icon":34,"name":51,"slug":52},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",{"category":54},{"id":55,"icon":34,"name":56,"slug":57},"c5c77cdb-f7d7-4990-9436-c81dcbff1163","Policy","policy",[59],{"type":52,"value":60,"context":61},"macOS.Gaslight","Rust-based backdoor targeting macOS, attributed to North Korea, uses adversarial prompt injection"]