In Other News: Anthropic Maps AI Threats, Unpatched Comodo Flaw, Palantir Chief Eyed for CISA

Other noteworthy stories that might have slipped under the radar: Ultrahuman data leak, The Gentlemen ransomware analysis, Hola Browser bundles miner. The post In Other News: Anthropic Maps AI Threats, Unpatched Comodo Flaw, Palantir Chief Eyed for CISA appeared first on SecurityWeek .

SecurityWeek reports that Anthropic conducted a year-long analysis mapping AI-enabled cyber operations to the MITRE ATT&CK framework, finding a rapid increase in threat actors using LLMs for high-risk activities such as lateral movement and credential dumping, and highlighting the growing importance of external agentic scaffolding to orchestrate autonomous attack chains.[1] The article also notes a localized supply chain compromise in the Hola Browser distribution pipeline, where a certified Windows installer was bundled with an unauthorized XMRig crypto-miner, and other non-AI-specific security incidents.[1] From a CyberSE.AI perspective, the Anthropic findings underscore that real-world actors are operationalizing LLMs and autonomous agents as part of offensive campaigns, making continuous AI-focused red teaming and explicit controls on agentic orchestration critical. The Hola Browser compromise further illustrates the need for AI-adjacent software supply chain governance and SBOM-style visibility around all components that may integrate with, distribute, or be distributed via AI-enabled platforms.