2026-W21-473d6fa5
One pipeline fire, in full · weekly run of 2026-05-24 · sub-agent allocation and telemetry, per-iteration verification verdicts and findings, source-list edits, coverage gaps, bridge invocations — and the run's own verification & coverage notes: what was published, what was dropped at the borderline or judged not relevant (and why), single-source carve-outs, and contradictions. Rendered from runs/2026-05-24/2026-W21-473d6fa5.md.
Run telemetry
- Items returned
- 2
- Duration
- 6m 26s
- Tool calls
- 9 WebFetch18 WebSearch8 bridge
- Cited sources
- 3 of 15 in slice
- Items returned
- 1
- Duration
- 8m 50s
- Tool calls
- 8 WebFetch15 WebSearch7 bridge
- Cited sources
- 1 of 13 in slice
Verification
Deep dive
—
Entries published (this run)
- Microsoft Defender Engine CVE-2026-41091 + CVE-2026-45498 — both confirmed exploited in the wild; out-of-band engine update is the fix synthesis high
- Drupal core CVE-2026-9082 — pre-auth SQL injection, CISA KEV, active exploitation confirmed; NCSC.ch flipped to "actively exploited" synthesis high
- SonicWall Gen6 SSL-VPN CVE-2024-12802 — Akira-linked actors bypassing MFA on *officially-patched* firmware synthesis notable
- Two CISA KEV additions under active exploitation — Trend Micro Apex One and Langflow synthesis high
- TeamPCP / Mini Shai-Hulud / Megalodon — the open-sourced supply-chain worm became commodity infrastructure this week synthesis notable
- Windows "Chaotic Eclipse" zero-day proliferation — YellowKey, GreenPlasma, MiniPlasma synthesis notable
- Drupal CVE-2026-9082 — disclosure-only Monday to KEV-confirmed-exploited by Friday synthesis notable
- CVE-2026-20223 — Cisco Secure Workload: CVSS 10.0 zero-auth REST API grants Site Admin across all tenants, no workaround vulnerability notable
- CVE-2026-42822 — Azure Local Disconnected Operations: CVSS 10.0 unauthenticated network elevation-of-privilege vulnerability notable
- CVE-2026-45829 — ChromaDB Python server: pre-auth RCE before the auth check, still unpatched vulnerability notable
- CVE-2026-48172 — LiteSpeed User-End cPanel plugin: authenticated cPanel user to root, actively exploited vulnerability notable
- CVE-2026-42096 … -42100 — Sparx Enterprise Architect / Pro Cloud Server: five-CVE pre-auth chain, public PoC, no patch vulnerability notable
- CVE-2026-7507 (+15) — Keycloak 26.6.2: identity-provider cluster including OIDC session fixation and cross-realm IDOR vulnerability notable
- Healthcare (DACH) — the soft surface is the administrative intermediary, not the hospital synthesis high
- Public administration — web-CMS and identity estate under multi-vector pressure synthesis notable
- Telecom — sustained pressure from espionage tradecraft and fragile carrier infrastructure synthesis notable
- Education — virtual-classroom platforms and EdTech SaaS exposure synthesis notable
- Technology / developer toolchain — CI/CD supply chain remains the week's highest-volume attack surface synthesis high
- Six German university hospitals — patient records exfiltrated via billing processor Unimed incident notable
- ARWINI (Lower Saxony prescription-audit body) — exfiltration confirmed; Kairos claims 2.87 TB including ~70,000 GDPR Art. 9 records incident notable
- 7-Eleven — ShinyHunters Salesforce campaign claims another 600,000+ records incident notable
- Grafana Labs / CoinbaseCartel — source-code-only theft confirmed; ransom rejected; detected by canary token incident notable
- West Pharmaceutical Services — 8-K/A confirms full operational restoration incident notable
- Rhysida claims Stuttgart municipal data — city denies a confirmed incident incident notable
- THORChain — ~$11M cross-chain vault drain on a Switzerland-based protocol incident notable
- Verizon 2026 DBIR — vulnerability exploitation is the #1 breach vector for the first time in 19 years; patching cadence regressed annual-report high
- Rapid7 Q1 2026 Threat Landscape Report — corroborates the structural shift; KEV-to-listing window collapsing annual-report notable
- Check Point Research March–April 2026 AI Threat Landscape Digest — operator-run AI platforms breach government agencies annual-report notable
- Webworm (China-aligned; FishMonger / Aquatic Panda) — pivots to EU government targets synthesis notable
- Ghostwriter / UAC-0057 / FrostyNeighbor (Belarus-aligned) — new OYSTER implant chain synthesis notable
- Midnight Blizzard and others operationalise ROADtools for Entra ID abuse synthesis high
- Screening Serpens / UNC1549 (Iran; Smoke Sandstorm / Nimbus Manticore) — AppDomainManager hijacking in six new RATs synthesis notable
- Calypso / Red Lamassu (Bronze Medley, China-aligned) — Showboat and JFMBackdoor against telecoms synthesis notable
- Fox Tempest — Microsoft DCU disrupts the malware-signing service feeding Rhysida, INC, Qilin and Akira synthesis notable
- The Gentlemen RaaS — Czech university and Swiss engineering firm listed; comms overhaul continues synthesis notable
- EU 20th Russia sanctions package — managed-security-services prohibition effective 25 May; Switzerland adopted most measures 22 May policy high
- npm ships 2FA-gated "staged publishing" GA — platform-governance response to the worm waves policy notable
- Law-enforcement infrastructure takedowns — Operation Saffron (Switzerland JIT), FIOD/Stark Industries, Kimwolf, INTERPOL Ramz policy notable
- Looking ahead — 2026-W21 outlook notable
Sources changed (this run)
Edits this run made to sources/sources.json · promotions, demotions, new candidates, and fetch-method / category / reliability / url corrections (the run record's sources_changed[]). Paginated; 10 per page.
No source-list edits recorded for this run.
Coverage gaps (this run)
Sources this run's brief needed that returned no usable content via any documented recipe. Bridge-recovered or quiet-day sources do NOT appear here. (Distinct from the independent source-accessibility probe at the foot of this section, which probes all active sources regardless of what any run needed.)
| Source (uncovered) | URL tried | Method chain | Status / class | What the agent did instead |
|---|---|---|---|---|
| cyble-eu-threat-landscape covered via alternate · should NOT be in this list | https://cyble.com/threat-intelligence-reports/ | webfetch | 503 transport-503 W1: 503 on rotation-priority source; date unverifiable; dropped (no in-window content lost) | none — quarterly-report axis covered via Verizon/Rapid7/Check Point |
Bridge invocations (this run)
2 bridge calls this run · these are successful bridge fetches (separate from "Coverage gaps" above).
- bridge:feed ×1
- bridge ×1
Verification findings · all iterations
Per-iteration finding detail. Each table is one verifier pass · what was flagged, how the main agent remediated it, and the outcome. Walking the tables top-to-bottom shows the verifier's debugging trail across iterations.
Iteration #2 cap-breach
Cap-breach iteration recorded no per-finding detail. The dashboard cannot show WHAT the verifier flagged. See .claude/agents/cti-verification.md § Findings summary for the contract.
Verification & coverage notes
The run record's narrative body, verbatim. This is where the run accounts for its own judgement calls — every borderline drop and judged-not-relevant item with its reason, dedup decisions, single-source items and their carve-outs, contradictions, and per-source coverage gaps — so nothing the run considered disappears silently.
Verification & coverage notesrun record body
2026-W21-473d6fa5 · weekly · Claude Opus 4.7 · 40 entries published
[SINGLE-SOURCE]items carried forward: Check Point's AI Threat Landscape Digest (§ 6, single-vendor); the Huawei VRP / POST Luxembourg outage root-cause (§ 4, Recorded Future News only, no CVE filed); the Rhysida Stuttgart claim (§ 5, unconfirmed by the city — recorded as a claim, not a breach).- Items dropped from this week's roll-up: B1ack's Stash 4.6M-card free-release (carding-dump, no defender-actionable TTP); ICO £355,880 POCA confiscation against a former Markerstudy insider (UK insider-threat enforcement, low CH/EU public-sector signal); several daily research items folded by reference rather than re-summarised (Fast16 nuclear-simulation tooling, the demo.pdb BadIIS MaaS ecosystem, PinTheft and DirtyDecrypt Linux LPE PoCs, the Atos BYOVD-driver research, Google Cloud API-key deletion-latency, the Kali365 OAuth device-code PhaaS). These cleared the daily bar but not W-PD-1's weekly bar; they may resurface if they develop.
- Reduced confidence / single-primary: the Check Point AI finding (single vendor, large claim) is treated as directional pending independent corroboration; the § 1 SonicWall CVE-2024-12802 item now rests on a single primary (Cybersecurity Dive) after a mis-attached corroborating URL was removed in verification.
- Missed angle (logged): no Swiss-national developer advisory (GovCERT.ch / NCSC.ch) on the Shai-Hulud / Megalodon supply-chain worm was found this run; W2's NCSC.ch sweep surfaced none. If GovCERT.ch issues CH-specific guidance it should be picked up next run.
- Contradictions / open items: SECO confirmation is pending on whether Switzerland's 22 May sanctions adoption includes the managed-security-services prohibition specifically (§ 8); no European Commission scope guidance yet.
- Sub-agents: both horizon sub-agents (W1 long-horizon, W2 policy) returned within budget. W1 reported coverage gaps on
cyble-eu-threat-landscape(503) andharfanglab(403); W2 reported gaps oninside-it-ch,bsi-de,anssi-fr(the specific CERT-FR SPIP advisory was nonetheless cited via the daily). One new candidate source surfaced (Cloud Security Alliance Lab Space) and was added as a candidate. - Coverage note: the previous
briefs/weekly/2026-W21.mdwas a misfired early run (committed 2026-05-18, ~1 hour after the 2026-W20 weekly) that re-summarised W20-era content under the W21 label; this run overwrites it cleanly with the proper end-of-week W21 summary covering 18–24 May. - Verification: 2 iterations (iter-1 Opus → NEEDS_FIXES truth=6/editorial=1; iter-2 Sonnet → NEEDS_FIXES truth=1/editorial=0). Early-exit on low-defect convergence (truth+editorial ≤ 2, no broken-URL / hallucinated-fact finding); residual=1. The residual was the § 5 Grafana mechanism specifics (
pull_request_target, canary token), which the iter-2 fix above resolved by limiting the claim to what the cited sources confirm. - Coverage gaps: databreaches-net (403 — transport, bridge-routed); sophos-xops (503); inside-it-ch (403); trendmicro-research (500); cert-eu (intermittent 200/timeout); cyble-eu-threat-landscape (503); harfanglab (403); bsi-de (W2 fetch gap); anssi-fr (W2 index gap — specific advisory cited via daily).
Migrated from briefs/weekly/2026-W21.md (v2).
← Operations dashboard · day page 2026-05-24 · run-record contract: docs/pipeline.md