Daily Hunt Feed - 2026-05-29

Threat Hunt Feed (2026-05-29)

BleepingComputer

• Anthropic confirms Claude Mythos-class models will roll out to the public — Thu, 28 May 2026 20:21:03 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Botnet (T1584.005), Server (T1584.004), Tool (T1588.002), Phishing (T1566), Software (T1592.002), At (T1053.002)
• GreyVibe hackers use ChatGPT, Gemini to power cyberattacks — Thu, 28 May 2026 18:24:49 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Botnet (T1584.005), Server (T1584.004), Trap (T1546.005), PowerShell (T1059.001), Tool (T1588.002), Phishing (T1566), Software (T1592.002), At (T1053.002)
• BTMOB Android malware service generates custom phishing payloads — Thu, 28 May 2026 17:10:11 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Botnet (T1584.005), Masquerading (T1036), Tool (T1588.002), Phishing (T1566), Software (T1592.002), At (T1053.002)
• Hackers exploit FortiClient EMS flaw to push infostealer malware — Thu, 28 May 2026 13:25:43 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), IP Addresses (T1590.005), Malware (T1588.001), Hardware (T1592.001), Botnet (T1584.005), Server (T1584.004), PowerShell (T1059.001), Tool (T1588.002), Phishing (T1566), Multi-Factor Authentication (T1556.006), Software (T1592.002), Credentials (T1589.001), At (T1053.002)

Darkreading

• Agentic AI Isn’t Risky; the Way Orgs Deploy It Is — Thu, 28 May 2026 15:36:25 GMT
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Credentials (T1589.001), At (T1053.002)
• BTMOB RAT Spreads Across Brazil, LatAm via MaaS Model — Thu, 28 May 2026 09:06:11 GMT
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), Tool (T1588.002), Phishing (T1566), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
• Nordic CISOs Handle Rising Cyber Threats Remarkably Well — Thu, 28 May 2026 07:01:00 GMT
  • Matched TTPs: Artificial Intelligence (T1588.007), Vulnerabilities (T1588.006), At (T1053.002)

The Hacker News

• Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer — Thu, 28 May 2026 20:56:04 +0530
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Server (T1584.004), Cloud Services (T1021.007), PowerShell (T1059.001), Phishing (T1566), Firmware (T1592.003), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001)
• JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware — Thu, 28 May 2026 13:24:48 +0530
  • Matched TTPs: Keychain (T1555.001), Malware (T1588.001), Malicious File (T1204.002), Hardware (T1592.001), Browser Extensions (T1176.001), Vulnerabilities (T1588.006), SSH (T1021.004), Password Managers (T1555.005), Domains (T1584.001), Server (T1584.004), Launchctl (T1569.001), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), Python (T1059.006), File Deletion (T1070.004), At (T1053.002)