2026-07-11T0409Z-intel
One pipeline fire, in full · intel run of 2026-07-11 · sub-agent allocation and telemetry, per-iteration verification verdicts and findings, source-list edits, coverage gaps, bridge invocations — and the run's own verification & coverage notes: what was published, what was dropped at the borderline or judged not relevant (and why), single-source carve-outs, and contradictions. Rendered from runs/2026-07-11/2026-07-11T0409Z-intel.md.
Run telemetry
- Items returned
- 2
- Duration
- 10m 15s
- Tool calls
- 13 WebFetch3 WebSearch30 bridge
- Cited sources
- 2 of 20 in slice
- Items returned
- 0
- Duration
- 8m 19s
- Tool calls
- 4 WebFetch6 WebSearch26 bridge
- Cited sources
- 0 of 18 in slice
- Items returned
- 4
- Duration
- 10m 46s
- Tool calls
- 20 WebFetch8 WebSearch2 bridge
- Cited sources
- 3 of 14 in slice
- Items returned
- 1
- Duration
- 10m 00s
- Tool calls
- 14 WebFetch12 WebSearch6 bridge
- Cited sources
- 1 of 13 in slice
Verification
Deep dive
—
Entries published (this run)
- CVE-2026-47291 — Windows HTTP.sys pre-auth RCE (CVSS 9.8): ZDI publishes full exploitation mechanics and a detection signature vulnerability notable update
- 'Friendly Fire': prompt injection hijacks AI coding agents' defensive auto-review into remote code execution research notable
- GigaWiper: a Golang backdoor that folds a disk wiper, fake-ransomware encryptor and secure-wipe module into one modular implant threat notable
- GodDamn ransomware (Beast/Monster rebrand) blinds EDR with 'PoisonX', a malicious kernel driver Microsoft signed threat notable
- NHS England issues insider-access controls after staff 'snooping' on high-profile patients' records incident notable
Sources changed (this run)
Edits this run made to sources/sources.json · promotions, demotions, new candidates, and fetch-method / category / reliability / url corrections (the run record's sources_changed[]). Paginated; 10 per page.
6 last_successful_fetch.
| Source | Change | From → To | Reason |
|---|---|---|---|
| zdi | last_successful_fetch | 2026-06-30 → 2026-07-11 | primary source for CVE-2026-47291 exploitation write-up |
| msft-ti | last_successful_fetch | 2026-06-30 → 2026-07-11 | primary source for GigaWiper |
| elastic-seclabs | last_successful_fetch | 2026-06-25 → 2026-07-11 | reachable, in-window REF6045 content (deduped/dropped on recency) |
| infosec-magazine | last_successful_fetch | 2026-06-27 → 2026-07-11 | corroboration for GigaWiper, GodDamn, Friendly Fire, NHS |
| rapid7-research | last_successful_fetch | 2026-06-29 → 2026-07-11 | Metasploit weekly wrap-up (FlowiseAI item dropped as borderline) |
| hackernews | last_successful_fetch | 2026-07-10 → 2026-07-11 | corroboration for GodDamn/PoisonX |
Coverage gaps (this run)
Sources this run's brief needed that returned no usable content via any documented recipe. Bridge-recovered or quiet-day sources do NOT appear here. (Distinct from the independent source-accessibility probe at the foot of this section, which probes all active sources regardless of what any run needed.)
No coverage gaps in this run · every source the brief needed returned usable content via its documented recipe.
Bridge invocations (this run)
5 bridge calls this run · these are successful bridge fetches (separate from "Coverage gaps" above).
- jina ×5
Verification findings · all iterations
Per-iteration finding detail. Each table is one verifier pass · what was flagged, how the main agent remediated it, and the outcome. Walking the tables top-to-bottom shows the verifier's debugging trail across iterations.
Iteration #1 NEEDS_FIXES · 3 findings (truth=2, editorial=0, advisory=1) · Claude Opus 4.8 · 9m 21s
| F-code | Section | Item · URL/quote | Verifier summary | Remediation · outcome |
|---|---|---|---|---|
| F3 claim-not-supported | — | RBAC/MFA/real-time sentence cited the NHS long-read, which does not carry that content; the material and evidence quote are verbatim in the already-cited press release. | Repointed the inline citation to the NHS England press release; removed the long-read from sources[] (no longer referenced). Verified against the press release | |
| F14 quantifier-without-source | — | Body implied 15 tools by writing '14-tool NirSoft kit plus Mimikatz'; Symantec says the 14-tool kit includes Mimikatz. | Reworded to 'a 14-tool credential-harvesting kit (13 NirSoft utilities plus Mimikatz)'. | |
| F11 editorial-advisory | — | Headline verb 'mandates' overstated the source's 'being asked to ensure' framing (body already hedged correctly). | Softened headline to 'presses trusts toward'. |
Iteration #2 NEEDS_FIXES · 3 findings (truth=0, editorial=2, advisory=1) · Claude Sonnet 5 · 6m 29s
| F-code | Section | Item · URL/quote | Verifier summary | Remediation · outcome |
|---|---|---|---|---|
| F17 classification-drift | — | reliability set A, but the primary source (Zero Day Initiative) is rated B in sources.json — a research lab, not a first-party authority for the affected product. | Set reliability B to track the primary source's letter. | |
| F17 classification-drift | — | reliability set A, but the primary source (Microsoft Threat Intelligence) is rated B in sources.json — a research lab for this threat report, not a first-party product authority. | Set reliability B to track the primary source's letter. | |
| F11 editorial-advisory | — | Verification notes leaked the workflow term 'sub-agent(s)' into reader-facing text. | Reworded the two lines (and a 'slice' reference) to plain-language stream descriptions. |
Iteration #3 CLEAN · 2 findings (truth=0, editorial=0, advisory=2) · Claude Opus 4.8 · 7m 29s
| F-code | Section | Item · URL/quote | Verifier summary | Remediation · outcome |
|---|---|---|---|---|
| F11 editorial-advisory | — | Headline/summary said 'clinicians' where the source says 'staff' (not all snoopers were clinicians). | Changed 'clinicians' to 'staff' in headline and summary. | |
| F11 editorial-advisory | — | S1/S4 research-stream labels appear in the published run-record notes. | Left as-is — the S1–S4 stream labels mirror the sub_agents telemetry keys and are accepted run-record convention; both prior verifiers accepted them. |
Verification & coverage notes
The run record's narrative body, verbatim. This is where the run accounts for its own judgement calls — every borderline drop and judged-not-relevant item with its reason, dedup decisions, single-source items and their carve-outs, contradictions, and per-source coverage gaps — so nothing the run considered disappears silently.
Verification & coverage notesrun record body
2026-07-11T0409Z-intel · Opus 4.8 · window 24 h · 5 entries published
Verification & coverage notes
Intraday fire, 8 h after the previous run (2026-07-10T2009Z-intel). The 24 h window floor re-scanned a full day; five entries published are the new delta the earlier runs had not surfaced — most primaries dated 2026-07-08/07-09 with 2026-07-10 trade-press corroboration, confirmed in-window and closing a coverage gap rather than duplicating.
- Dedup: CVE-2026-47291 is already in the store (June Patch Tuesday entry, 2026-06-10 — outside the 14-day in-context window, caught by the store-wide CVE index). The in-window development is ZDI's full exploitation write-up (2026-07-10), so it ships as an
update_ofdelta, not a new entry — never recapping the original. - borderline-drop: FlowiseAI CSV Agent RCE (CVE-2026-41264) — underlying CVE is April 2026; the only in-window delta is a public Metasploit module for a niche self-hosted AI-agent platform whose public-sector nexus is speculative, with no confirmed in-the-wild exploitation of this specific bypass. Doubt about relevance-to-constituency resolved toward drop.
- out-of-window: REF6045 / SCMBANKER (Elastic Security Labs) — freshest source 2026-07-08 (~72 h), outside the 24 h window and not an update/background/patched-reference case; victimology is out-of-region (Mexican retail banking) and the transferable ClickFix delivery-chain content is already well-covered as a technique. Dropped on recency + weak nexus.
- Single-source / carve-out: none — all five published entries are multi-source.
- Reduced confidence: NHS England entry set
confidence: medium— the concrete information-governance technical-control annex (digital.nhs.uk) 403'd this run; composed from the NHS press release, the guidance long-read and Infosecurity Magazine, with the specific incident counts attributed to Infosecurity Magazine (the NHS release cites the incidents only in general terms, including the Nottingham attacks). A follow-up run could retry that annex. - Contradictions: none. One correction folded into the CVE-2026-47291 update: ZDI's write-up clarifies the exposure condition (a host must have
MaxRequestBytesraised to ≥ 262,144 bytes to be exploitable; ≤ 65,535 is the conservative safe setting) more precisely than the original 2026-06-10 advisory framing. - Deep dive: none. No candidate cleared the bar — no active in-the-wild exploitation with constituency exposure; the strongest technical items (GigaWiper, GodDamn/PoisonX, Friendly Fire) are substantive but observed against out-of-region targets or are PoCs.
deep_dives_todaywas 0; no depth manufactured to fill the slot. - Priority: no
criticaland nohighthis run — none of the published items involves active exploitation targeting the constituency, and CVE-2026-47291 is a month-patched, not-yet-exploited bug (newly-public mechanics, not new exploitation). All five arenotable, calibrated to genuine-but-non-urgent action. - Dedup catches during research (correctly excluded, not republished): Sygnia AI-assisted cloud attack (= 2026-07-09 entry); Gitea CVE-2026-20896, Zimbra, BeyondTrust CVE-2026-40138 cluster, Januscape CVE-2026-53359, Siemens SICAM SSA-229470 (all 2026-07-08/09/10 entries); recycled CISA GovCloud-keys post (2026-06-23); stale RTS "Homeland Justice" (2026-06-23) and ShinyHunters/Council-of-Europe (2026-06-15) items.
- Fake-news guard: a bulk Deadlock leak-site wave (~60 claims in a 25-minute window on 2026-07-10, incl. a Swiss SME and a Czech municipality) was dropped — no victim confirmation or Admiralty A/B journalism, and the Czech claim traced to an already-resolved March 2026 incident.
- ATT&CK: mapped against the pinned dataset (v19.1). Dropped an unsupported T1685.005 (Clear Windows Event Logs) mapping from GigaWiper — not described by the source; used T1685 (Disable or Modify Tools, the v19 replacement for the revoked T1562) for GodDamn's EDR-blinding.
- Coverage gaps: cert-eu (monthly cadence, freshest 2026-06-10); ncsc-uk (freshest 2026-04-07); jpcert (freshest 2026-06-10); vulncheck, watchtowr, exodus-intelligence, flatt-security, calif-codex, xlab-qianxin, seqrite-labs, sophos-xops, sansec-research, volexity, fox-it-blog (all reachable, no in-window content); industrialcyber-co (persistent 403 on WebFetch + jina, only /feed/ reachable — flagged 7+ runs, classed handled by source_health via its recipe, 403 never demotes); inside-it.ch (blocked both transports). Note: industrialcyber-co was flagged as a rotation priority for the vulnerabilities stream, but its source category routes it to the research and incidents streams, which did attempt it — not a real miss.
- Watchlist: no products/suppliers configured — sweep is a no-op (S1 products, S4 suppliers both 0/0); omitted from parseable line per policy.
- source_health.py: 157/157 probed in 50 s, all ok/bridge-ok, zero UNSOLVED — no repair orders this run.
← Operations dashboard · day page 2026-07-11 · run-record contract: docs/pipeline.md