Daily Security Briefing #178

February 27, 2026 | Read Online

GRIDTIDE disrupted, Claude Code vulnerabilities exposed, and AI training data poisoning…

Executive Summary

Cybersecurity threats continue to evolve with malicious actors adapting to disruptions. The recent GRIDTIDE campaign disruption highlights collaborative efforts between industry partners. Meanwhile, critical vulnerabilities in Claude Code have been exposed. Additionally, AI training data poisoning has become a growing concern.

Top Articles

Iran’s Internet Shutdown: A Two-Tiered System The Iranian government’s internet shutdown has raised concerns about the country’s two-tiered internet system. This shutdown is not just blocking social media or foreign websites but a total communications blackout. Schneier

Metasploit Update: New Exploit Modules and Vulnerability Support The latest Metasploit release brings significant updates, including new exploit modules and critical vulnerability support. The standout additions are the Ollama path traversal RCE (CVE-2024-37032) and the Grandstream GXP1600 stack overflow (CVE-2026-2329). Rapid7

Aeternum C2 Infrastructure: Advanced Evasion and Persistence Tactics Researchers have unveiled Aeternum, a newly identified C2 framework that uses advanced evasion and persistence tactics. This framework may render traditional botnet disruption strategies obsolete. GBHackers

87% of Organizations Exposed to Attacks Due to Known Vulnerabilities A study reveals that 87% of organizations have known vulnerabilities, leaving their software supply chains highly vulnerable to threat actors. This highlights the critical tension between development velocity and security. GBHackers

DoJ Seizes $61 Million in Tether Linked to Pig Butchering Crypto Scams The U.S. Department of Justice has seized $61 million worth of Tether linked to bogus cryptocurrency schemes known as pig butchering. The Hacker News

900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks Over 900 Sangoma FreePBX instances remain infected with web shells as part of attacks that exploited a command injection vulnerability starting in December 2025. The Hacker News

OpenAI Confirms ChatGPT’s Role In Chinese Cyberattack Campaigns OpenAI has confirmed that threat actors, including groups linked to China and Russia, were exploiting ChatGPT to support malicious cyber and influence operations. Cyber Press

Third-Party Patching and the Business Footprint We All Share The article discusses how third-party software drift increases exploit risk and why consistent patching reduces exposure across endpoints. Bleeping Computer

Europol-led crackdown on The Com hackers leads to 30 arrests A yearlong Europol-coordinated operation has led to 30 arrests and 179 suspects being tied to “The Com,” an online cybercrime collective that targets children and teenagers. Bleeping Computer

AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.