25th May – Threat Intelligence Report

This weekly Threat Intelligence Bulletin reports multiple high-impact incidents and trends: confirmed breaches affecting 7‑Eleven, GitHub and Grafana with source-code and Salesforce data exfiltration; actively exploited critical vulnerabilities in Windows Defender and Drupal (CVE-2026-9082); supply-chain compromise of Laravel packages distributing a cross-platform credential stealer; discovery of Showboat Linux malware and large-scale C2 abuse across Middle Eastern providers; and growth of AI-driven phishing and phishing-as-a-service platforms undermining MFA and automated defenses.