Podcasts
CyberWire Daily
Ep 2556
The CyberWire Daily Podcast 5.20.26
Ep 2556 | 5.20.26

The cost of trusting the extension ecosystem.

Show Notes
Transcript

GitHub confirms a breach tied to a malicious VS Code extension. Anthropic fights a Pentagon blacklist as the White House weighs new AI security rules. Drupal scrambles to patch a critical flaw. Cisco Talos tracks the evolution of BadIIS malware-for-hire. Signal adds anti-phishing safeguards, Microsoft cracks down on malware-signing services, and China says foreign spies hijacked domestic routers for phishing operations. Wireless carriers collaborate to kill dead zones. Our guest is Rob T. Lee, Chief AI Officer, Chief of Research, SANS Institute, discussing The Cloud Security Alliance’s “AI Vulnerability Storm” report. A book about misinformation contains helpful examples.

Today is Wednesday May 20th 2026. I’m Dave Bittner. And this is your CyberWire Intel Briefing.

GitHub confirms internal repository breach tied to malicious VS Code extension. 

GitHub says roughly 3,800 internal repositories were exposed after an employee installed a poisoned Visual Studio Code, or VS Code, extension.

The company says it detected and contained the compromise after isolating the affected employee device and removing the malicious extension from the VS Code Marketplace. According to GitHub, the attacker accessed GitHub-internal repositories only, with no current evidence that customer data outside those repositories was affected. The TeamPCP hacker group claimed responsibility on the Breached cybercrime forum and allegedly offered the stolen data for sale for at least $50,000. Additional technical details about the extension and affected repositories remain unclear from current reporting.

Developer tools and software marketplaces remain attractive supply chain attack targets. Malicious VS Code extensions have repeatedly been used to steal credentials, deploy malware, and compromise developer environments at scale.

Federal appeals panel questions Pentagon blacklist of Anthropic, as the White House prepares a cybersecurity and AI safety executive order. 

A federal appeals court panel signaled skepticism Tuesday over the Pentagon’s decision to blacklist AI company Anthropic as a national security “supply chain risk.”

The dispute centers on Anthropic’s refusal to remove contractual restrictions preventing its Claude AI model from being used for lethal autonomous warfare or mass surveillance of Americans. Defense Secretary Pete Hegseth barred the company from working with military contractors in March, arguing Anthropic could impose undisclosed operational restrictions on military use. During arguments, multiple judges questioned whether the Pentagon stretched a law designed to address sabotage and foreign threats beyond its intended scope. One judge called the move “a spectacular overreach.”

The case highlights growing tension between AI safety guardrails and government demands for unrestricted military access to commercial AI systems.

Meanwhile, the White House is reportedly preparing an executive order focused on cybersecurity and advanced artificial intelligence safety measures.

According to Axios, the draft order would strengthen cybersecurity protections across government and critical infrastructure sectors while creating a voluntary framework for AI developers to share certain frontier models with the government before public release. The proposal follows growing concern around highly capable AI systems, including Anthropic’s Mythos and OpenAI’s GPT-5.5-Cyber, which reportedly demonstrated advanced vulnerability discovery capabilities. A White House official cautioned that discussions around the order remain speculative.

The move signals growing government concern over AI systems with offensive cyber potential, even as debate continues over how aggressively Washington should regulate emerging AI technologies.

Drupal warns of highly critical core vulnerability ahead of emergency patch release. 

Drupal developers are warning administrators to prepare immediately for patches addressing a highly critical core vulnerability expected Wednesday.

The flaw, tracked as PSA-2026-05-18, affects multiple supported Drupal versions and could potentially allow complete website compromise. The Drupal Security Team says attackers may develop working exploits within hours of patch release. Emergency fixes are planned even for some unsupported branches, including Drupal 8.9 and 9.5, though Drupal 7 is reportedly unaffected. Administrators are being urged to update to the latest bugfix release before the scheduled patch window and reserve time for immediate deployment.

The warning underscores the ongoing risk posed by widely deployed content management systems in government and enterprise environments, where rapid exploitation often follows public disclosure.

Cisco Talos links BadIIS malware variant to evolving cybercrime service ecosystem. 

Cisco Talos says a widely used BadIIS malware variant appears to operate as a commodity malware-as-a-service platform used by multiple Chinese-speaking cybercrime groups.

Researchers traced the malware through embedded “demo.pdb” development strings and linked its ongoing evolution to a developer using the alias “lwxat.” Talos says the malware has been actively maintained since at least 2021 and includes builder tools that let threat actors customize payloads for SEO fraud, malicious traffic redirection, reverse proxying, and content hijacking on compromised IIS web servers. Investigators also uncovered supporting installer tools, persistence mechanisms, and antivirus evasion features, including builds designed to bypass Norton protections.

The findings highlight how commercialized cybercrime ecosystems continue to professionalize malware development, customization, and long-term maintenance for financially motivated operations.

Wireless carriers collaborate to kill dead zones. 

Satellite providers and wireless carriers are betting that dead zones may finally become a thing of the past. A new joint venture aims to expand direct-to-device connectivity using satellites to fill coverage gaps in remote and underserved areas. Our own Maria Varmazis takes a closer look at what that could mean for connectivity, competition, and the growing push to blend terrestrial and space-based networks.

Thank you Dave.

The three biggest U.S. wireless carriers are teaming up, and will potentially reshape the growing satellite-to-phone market in the process. AT&T, T-Mobile, and Verizon this week announced an agreement to form a joint venture focused on expanding satellite-based direct-to-device coverage across the United States.

This move puts the three carriers in direct competition with satellite connectivity efforts led by SpaceX and its Starlink service, which interestingly already partners with T-Mobile on direct-to-cell capabilities. The three providers say they'll pool spectrum resources and create a unified platform that multiple satellite providers could use, rather than relying on exclusive carrier partnerships.

The companies say the effort, once it completes regulatory approvals and final agreements of course, will reduce coverage gaps or 'dead zones', improve emergency connectivity during disasters when terrestrial options fail, and allow for more new satellite-enabled services directly on customer phones. 

For the CyberWire daily, I'm Maria Varmazis from T-Minus: Space-Cyber Briefing. Back to you Dave. 

Signal adds new anti-phishing protections following attacks on high-profile users. 

Signal has rolled out new in-app warnings and verification prompts designed to slow down phishing and social engineering attacks targeting its users.

The changes follow recent campaigns in which attackers posing as “Signal Support” tricked victims into linking rogue devices to their accounts through QR codes or one-time verification codes. According to public warnings from the FBI and European authorities, the activity has been linked to Russian state-sponsored actors targeting high-profile individuals. Signal’s new safeguards include “Name not verified” labels for unknown contacts, warnings about accounts with no shared groups, and reminders that Signal will never request registration codes, PINs, or recovery keys.

The update reflects growing concern over social engineering attacks that bypass technical defenses by manipulating user trust rather than exploiting software vulnerabilities.

Microsoft disrupts malware-signing service tied to ransomware operations. 

Microsoft says it has disrupted a cybercrime service called Fox Tempest that helped attackers disguise malware as legitimate software using fraudulently obtained code-signing credentials.

According to Microsoft, the malware-signing-as-a-service operation enabled ransomware groups and other threat actors to bypass security warnings by making malicious files appear trusted. The company says it seized infrastructure tied to the operation, including the signspace[.]cloud domain, disabled fraudulent accounts, and disrupted hundreds of virtual machines supporting the service. Microsoft linked the platform to ransomware operators including Vanilla Tempest and malware families such as Oyster, Lumma Stealer, Vidar, and Rhysida. Investigators say the operation used fake identities and automated infrastructure to obtain signing credentials at scale.

The case illustrates how cybercrime operations increasingly rely on specialized commercial services that industrialize attack preparation and improve malware delivery success rates.

China says foreign intelligence service hijacked domestic routers for phishing campaign. 

China’s Ministry of State Security says a foreign intelligence agency compromised domestic routers and used them to conduct phishing attacks against personnel at key institutions.

According to the MSS, attackers hijacked vulnerable routers inside China and used them as proxy infrastructure to send phishing emails disguised as review invitations or traffic violation notices. Victims were redirected to fake login pages designed to harvest credentials before being forwarded to legitimate-looking sites. Authorities say attackers then accessed compromised email accounts to steal sensitive information. Many affected users reportedly noticed only degraded internet performance, unexpected reboots, or connection instability. The MSS says compromised devices often relied on outdated hardware, weak passwords, or enabled remote management features.

The incident highlights how poorly secured edge devices continue to provide attackers with covert infrastructure for espionage and credential theft campaigns.

 

A book about misinformation contains helpful examples. 

A nonfiction book warning about artificial intelligence and the erosion of truth has run into an awkward problem: several of its quotes appear to have been invented by A.I.

Author Steven Rosenbaum acknowledged that “The Future of Truth” included what he called “improperly attributed or synthetic quotes” after reporting by The New York Times identified multiple fabricated or altered citations. Among them were quotes falsely attributed to tech journalist Kara Swisher and psychology professor Lisa Feldman Barrett. Rosenbaum said he used ChatGPT and Claude during the research and editing process and is now reviewing the book with editors for corrections. Some quotes were entirely fabricated, while others blended authentic ideas with wording sources said they never used.

The episode lands squarely in the publishing industry’s growing anxiety over A.I.-assisted writing, where even a book about misinformation can apparently hallucinate its own footnotes.

And that’s the CyberWire.

For links to all of today’s stories, check out our Daily Briefing at the cyberwire dot com.

 

And that’s the CyberWire Daily, brought to you by N2K CyberWire.

We’d love to know what you think of this podcast. Your feedback ensures we deliver the insights that keep you a step ahead in the rapidly changing world of cybersecurity. If you like the show, please share a rating and review in your podcast app. Please also fill out the survey in the show notes or send an email to cyberwire@n2k.com

We’re proud that N2K CyberWire is part of the daily routine of the most influential leaders and operators in the public and private sector, from the Fortune 500 to many of the world’s preeminent intelligence and law enforcement agencies.

N2K helps cybersecurity professionals and organizations grow, learn, and stay ahead. We’re the nexus for discovering the people, tech, and ideas shaping the industry.  Learn how at n2k.com.

 

N2K’s lead producer is Liz Stokes. We’re mixed by  Tré Hester, with original music by and sound design Elliott Peltzman. Our contributing host is Maria Varmazis. Our executive producer is Jennifer Eiben. Peter Kilpe is our publisher. And I’m Dave Bittner. Thanks for listening.

CyberWire Daily
Podcast Info
HOST(S):
Dave Bittner
Dave Bittner is a security podcast host and one of the founders at CyberWire. He's a creator, producer, videographer, actor, experimenter, and entrepreneur. He's had a long career in the worlds of television, journalism and media production, and is one of the pioneers of non-linear editing and digital storytelling.
Schedule: Monday-Friday
Creator: N2K Networks, Inc.