On this roundup, Tony seems to be at assaults towards Polish water remedy amenities, how AI-directed assaults failed in Mexico, and what Google believes is the primary AI-generated zero-day exploit
29 Would possibly 2026
It’s that point of month when ESET Leader Safety Evangelist Tony Anscombe seems to be again at one of the most most sensible cybersecurity tales that made the scoop during the last 30 or so days and provides insights that the they’ll hang on your personal cyber-defenses. Here is a few of what stuck Tony’s consideration in Would possibly 2026:
- Poland’s Inside Safety Company (ABW) has launched details about cyber-intrusions into ICS (business regulate programs) at 5 water remedy amenities within the nation in 2024 and 2025. The 2 primary assault vectors – vulnerable passwords and programs uncovered immediately to the web – had been the similar as the ones utilized in assaults towards the Polish power sector that leveraged DynoWiper described via ESET researchers right here.
- An unknown workforce not too long ago exfiltrated troves of knowledge from the federal government of Mexico in what has been described as one of the vital global’s first actually AI-directed assaults, however the next assault towards a water software plant didn’t bridge the space from IT to OT programs,
- Google has recognized what it believes is the primary zero-day exploit evolved the use of AI
- American citizens misplaced greater than $388 million ultimate yr to scams the use of cryptocurrency kiosks, consistent with the FBI.
What are some key mitigation steps towards assaults concentrated on OT programs? How do scams crypto ATMs paintings and easy methods to keep secure? Be told this and extra in Tony’s video and be certain that to try the April 2026 version of Tony’s per month safety information roundup for extra insights.
