Coverage: Last 72 hours

Today’s Highlights

This period underscored a surge in AI security incidents and regulatory moves. Urgent challenges include evolving AI model governance, with U.S. export restrictions abruptly suspending Anthropic models for foreign nationals, demonstrating how geopolitical events can instantly paralyze enterprise AI workflows. At the same time, the shutdown of a massive AI-based phishing platform, novel supply chain exploits targeting developer AI agents, and new legal precedents for AI liability shape priorities for both defenders and enterprise leaders. Security teams must align on immediate controls, business continuity, and legal risk reviews as AI becomes ever more central to operations and threat landscapes.

Table of Contents

1. U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals
2. Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing
3. Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code
4. FBI disrupts massive AI-powered phishing service using a million URLs
5. US Gov asks Anthropic to ban ‘foreign national’ access to Fable, Mythos
6. Andrew Hastie compares AI to cold-war nuclear arms race and warns Australia may fall behind
7. A Court Has Ruled That Google Is Liable for False Statements Generated by AI Overviews

Top Stories

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals

Source: The Hacker News | Risk: High | Impacted: Organizations using Anthropic Fable 5, Organizations using Anthropic Mythos 5, Third-party SaaS integrations reliant on these models

Summary: Anthropic said on Friday it will “abruptly disable” its most advanced artificial intelligence (AI) models, Claude Fable 5 and Mythos 5, for all users after the U.S. government ordered it to suspend access to the models for foreign nationals, whether inside or outside the U.S., citing national security concerns. The AI company said it received an order at 5:21 p.m.

Why it matters: Forced suspension of advanced AI model access can disrupt enterprise reliance on third-party AI platforms, raising concerns about abrupt workflow halts as well as data sovereignty when using US-regulated AI providers.

Practitioner Perspective

Organizations leveraging Anthropic’s Fable 5 and Mythos 5 models face immediate operational risk: government intervention has led to a global shutdown with no warning. This highlights how reliance on externally hosted generative AI introduces a new class of supply chain and regulatory exposure. Security and GRC teams must immediately assess their AI dependencies and identify workarounds for business-critical AI features. Legal and privacy leads should also consider risks of data transfer and model capability restrictions as geopolitical factors drive technology access decisions. Rethink contingency plans for any workflow dependent on cloud-hosted LLMs under US jurisdiction.

Recommended Actions

• Inventory all enterprise workflows leveraging Anthropic Fable 5 or Mythos 5 APIs and identify business-critical dependencies
• Develop and test fallback procedures for AI-powered tasks if Anthropic or similar providers become unavailable

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing

Source: The Hacker News | Risk: High | Impacted: Mobile phone users in the US, Organizations targeted by phishing, Messaging security gateways

Summary: Google on Friday said it’s pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting Americans. The network is said to be behind the development and management of a phishing-as-a-service (PhaaS) software kit called Outsider, per the tech giant. “The operation weaponized Gemini to help

Why it matters: Attackers leveraging generative AI to weaponize and scale phishing presents a significant increase in potential victim reach, eroding traditional detection capabilities and complicating attribution.

Practitioner Perspective

Smishing campaigns using AI like Gemini can generate novel and convincing attack content at scale, bypassing static detection and language pattern analysis. Criminal groups are turning AI language models into integral parts of phishing-as-a-service kits, shifting the arms race further in attackers’ favor. Security teams must update simulation, training, and detection to recognize AI-augmented tactics. Human-centric security controls, especially user reporting, are likely to remain crucial given rapid AI-generated phishing customization. Assume phishing content will only get more context-specific and harder to block with conventional filters.

Recommended Actions

• Update smishing and phishing detection policies to account for AI-generated language (e.g. Gemini signatures)
• Simulate AI-assisted phishing in internal awareness programs referencing tactics observed in the Outsider PhaaS kit

Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code

Source: The Hacker News | Risk: High | Impacted: Organizations using Sentry for error reporting, Teams deploying AI coding agents, Software development environments

Summary: Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence (AI) coding agents into running arbitrary code on developer machines. Called Agentjacking by Tenet Security, the attack can be triggered by means of a fake error report crafted using Sentry, an open-source error-tracking and performance-monitoring platform. “The attack

Why it matters: Malicious error reports exploiting integrated AI coding agents can lead to code execution on developer endpoints, creating a stealthy vector for supplying backdoors or malware into software pipelines.

Practitioner Perspective

Any development team integrating AI coding assistants (like those connected to Sentry for error telemetry) is now exposed to ‘Agentjacking’: attackers can manipulate error submissions to trigger arbitrary code execution via the AI. This adds a potent new dimension to the software supply chain threat, allowing compromise at the developer’s endpoint without requiring a traditional phishing payload. Security controls around the entire dev pipeline, especially third-party chatbot/AI integrations, must be reexamined for unintended code execution risks. This attack revalidates the need for rigorous guardrails and output sandboxing when developers are consuming AI-generated fixes or debugging code.

Recommended Actions

• Audit developer use of Sentry integrations with AI coding agents and restrict access to trusted sources
• Enforce execution sandboxing for code or commands produced by AI-powered developer tools

FBI disrupts massive AI-powered phishing service using a million URLs

Source: BleepingComputer | Risk: High | Impacted: Gateway email and SMS security appliances, Organizations with US presence, SaaS providers targeted by credential phishing

Summary: In a coordinated effort, the FBI, working with Google and Black Lotus Labs, has dismantled a massive Chinese phishing-as-a-service operation called Outsider Enterprise with thousands of phishing websites used to steal credit card data and passwords.

Why it matters: Disruption of a major AI-guided phishing-as-a-service platform is temporary: copycats and rebrands are likely to follow, and defenders must treat the underlying technique as persistent.

Practitioner Perspective

While law enforcement has dismantled the Outsider Enterprise phishing operation, the techniques and infrastructure templates it used are already in the wild. Large-scale, AI-enhanced phishing leveraging millions of disposable URLs has proven effective and scalable for attackers. Defenders should not treat this takedown as a signal to lower guard, expect near-term resurgences using similar toolkits repurposed by other actors. The key new risk is increased automation and customized targeting at scale, overwhelming conventional detection and response playbooks. Use this event to pressure-test anti-phishing controls and incident response capabilities against high-volume, highly dynamic threat sources.

Recommended Actions

• Identify and block known Outsider Enterprise phishing domains in proxies and firewalls
• Hunt for credential theft attempts using Outsider-affiliated URLs in internal mail and SMS logs

US Gov asks Anthropic to ban ‘foreign national’ access to Fable, Mythos

Source: BleepingComputer | Risk: High | Impacted: Multinational organizations using Anthropic AI, Global R&D centers, Vendors integrating with Fable or Mythos models

Summary: The US government has ordered Anthropic to block all foreign nationals from accessing Fable 5 and Mythos 5, forcing the company to suspend both models worldwide. Anthropic is complying but disputes the basis, calling the cited jailbreak narrow and the capability widely available elsewhere.

Why it matters: Sudden policy changes restricting AI model access based on user nationality create operational uncertainty for multinational organizations and may force rapid pivots to alternative tools, disrupting global support or R&D functions.

Practitioner Perspective

Any international business relying on Anthropic’s Fable 5 and Mythos 5 must immediately assess how user segmentation by nationality could impact project continuity and data access. Legal jurisdiction and rapid regulatory moves can now directly impact technical capability. Multinational IT teams should expect that similar restrictions may be imposed on other providers and proactively plan for abrupt model unavailability or access blocks. The business continuity impact could cascade to SaaS or platform partners who rely on these models for core features.

Recommended Actions

• Map all uses of Fable 5 and Mythos 5 within multinational environments and flag critical dependencies tied to user nationality
• Coordinate with HR and legal for rapid user segmentation and access review to comply with new Anthropic restrictions

Emerging Signals

Andrew Hastie compares AI to cold-war nuclear arms race and warns Australia may fall behind

Source: The Guardian | Risk: Medium | Impacted: Australian critical infrastructure operators, Regional SOCs, Organizations dependent on foreign AI platforms

Summary: Liberal MP says Australia risks sovereignty and strategic independence being ‘constrained by the AI superpowers reshaping the global order’ Get our breaking news email, free app or daily news podcast Liberal MP Andrew Hastie says Australia should dramatically scale up investment in artificial intelligence to preserve strategic independence and warns the country risks being “a supplicant state” tethered to the

Why it matters: National policy uncertainty around AI development can increase regional risk by hindering investment in cyber defense and enabling threat actors to exploit lagging jurisdictions.

Practitioner Perspective

When countries lag in AI adoption and research, their critical infrastructure and technology providers risk depending on foreign AI platforms without the ability to vet, redeploy, or defend locally. This can weaken national resilience against targeted attacks using advanced AI and create dependencies that adversaries may exploit via supply chain or regulatory leverage. Information security teams in affected regions should proactively assess reliance on non-native AI tech and prepare for new threats targeting regional gaps in technical skill or AI access. Stay alert for rapid threat shifts as the geopolitics of AI evolve.

Recommended Actions

• Inventory AI capabilities currently used in critical environments and identify foreign-developed dependencies
• Engage with national policy forums on AI investment and advocate for local technological autonomy

Exploits & CVEs

No new prioritized CVE stories during this briefing period.

AI Security

A Court Has Ruled That Google Is Liable for False Statements Generated by AI Overviews

Source: The Verge AI | Risk: Medium | Impacted: Organizations deploying Google AI platforms, Enterprises with customer-facing AI generative services, Legal and compliance stakeholders

Summary: The ruling holds that a company that designs, trains, operates, and manages an AI system must assume legal liability for any damages caused by the responses it generates.

Why it matters: Legal liability for AI-generated content raises risk for security and compliance teams managing enterprise applications built on third-party generative AI platforms, potentially exposing organizations to reputational and financial damage.

Practitioner Perspective

Now that courts are holding platforms like Google legally responsible for AI-generated content, any enterprise consuming or redistributing third-party LLM output could become a vector for regulatory scrutiny and civil litigation. Security and risk leaders must re-examine how generative AI is used in workflows and customer-facing capabilities, especially where factual accuracy and reputational harm are at stake. This sets a potential precedent for downstream providers being drawn into legal action over AI hallucinations or misleading information. Tighten review, disclaimers, and auditing around AI-driven outputs distributed to partners or customers.

Recommended Actions

• Audit uses of Google Overviews and other generative AI content for accuracy and content validation processes
• Review and update internal documentation and disclaimers on AI-generated outputs distributed externally

Defensive Actions

• Inventory all enterprise workflows leveraging Anthropic Fable 5 or Mythos 5 APIs and identify business-critical dependencies
• Develop and test fallback procedures for AI-powered tasks if Anthropic or similar providers become unavailable
• Review vendor legal agreements for clauses around forced service suspension or export controls on AI models
• Assess exposure of sensitive data uploaded to US-controlled AI models and ensure alternative processing locations if needed
• Update smishing and phishing detection policies to account for AI-generated language (e.g. Gemini signatures)
• Simulate AI-assisted phishing in internal awareness programs referencing tactics observed in the Outsider PhaaS kit
• Audit developer use of Sentry integrations with AI coding agents and restrict access to trusted sources
• Enforce execution sandboxing for code or commands produced by AI-powered developer tools
• Identify and block known Outsider Enterprise phishing domains in proxies and firewalls
• Hunt for credential theft attempts using Outsider-affiliated URLs in internal mail and SMS logs
• Map all uses of Fable 5 and Mythos 5 within multinational environments and flag critical dependencies tied to user nationality
• Coordinate with HR and legal for rapid user segmentation and access review to comply with new Anthropic restrictions
• Inventory AI capabilities currently used in critical environments and identify foreign-developed dependencies
• Engage with national policy forums on AI investment and advocate for local technological autonomy
• Audit uses of Google Overviews and other generative AI content for accuracy and content validation processes
• Review and update internal documentation and disclaimers on AI-generated outputs distributed externally

What We’re Watching

The rapid shifts in AI model availability, new legal precedents for generative AI, and the escalation of AI-driven phishing campaigns point to an urgent need for organizations to actively manage supply chain and regulatory dependencies. Legal and operational impacts are increasingly being driven by factors outside direct technical control, emphasizing the importance of continuous review and resilience planning across security, legal, and business teams.

Categories: Artificial Intelligence, Cybersecurity Blog

Tags: AI Security, Anthropic, Gemini AI, legal liability, Phishing, Software Supply Chain