On this roundup, Tony seems at assaults in opposition to Polish water therapy amenities, how AI-directed assaults failed in Mexico, and what Google believes is the primary AI-generated zero-day exploit
29 Could 2026
It’s that point of month when ESET Chief Safety Evangelist Tony Anscombe seems again at a few of the high cybersecurity tales that made the information over the previous 30 or so days and gives insights that the they might maintain on your personal cyber-defenses. This is a few of what caught Tony’s consideration in Could 2026:
- Poland’s Inner Safety Company (ABW) has launched data about cyber-intrusions into ICS (industrial management programs) at 5 water therapy amenities within the nation in 2024 and 2025. The 2 predominant assault vectors – weak passwords and programs uncovered on to the web – had been the identical as these utilized in assaults in opposition to the Polish vitality sector that leveraged DynoWiper described by ESET researchers right here.
- An unknown group just lately exfiltrated troves of knowledge from the federal government of Mexico in what has been described as one of many world’s first actually AI-directed assaults, however the subsequent assault in opposition to a water utility plant did not bridge the hole from IT to OT programs,
- Google has recognized what it believes is the primary zero-day exploit developed utilizing AI
- Individuals misplaced greater than $388 million final yr to scams utilizing cryptocurrency kiosks, in accordance with the FBI.
What are some key mitigation steps in opposition to assaults focusing on OT programs? How do scams crypto ATMs work and learn how to keep secure? Be taught this and extra in Tony’s video and you should definitely try the April 2026 version of Tony’s month-to-month safety information roundup for extra insights.
