The Good, the Bad and the Ugly in Cybersecurity – Week 21

A security roundup reports Interpol- and Europol-led global takedowns of cybercrime infrastructure (servers, a malicious VPN, PHaaS) and arrests, details a new macOS infostealer variant called Reaper that abuses applescript://, Gatekeeper bypasses, and file exfiltration modules, and describes two actively exploited Microsoft Defender zero-days (CVE-2026-41091 and CVE-2026-45498) that enable SYSTEM privilege escalation and DoS; the report includes impact figures (28,000 compromised accounts, $721k fraud), seized infrastructure, and mitigation guidance including updates and monitoring for suspicious AppleScript/LaunchAgent activity.