AI Vulnerability Explosion, Kim Wolf Botnet Arrest, Ghost CMS Hack, Iran Cyber Espionage
5/25/202613 min
Is AI about to trigger a cybersecurity vulnerability explosion?
In this episode of Cybersecurity Today, David Shipley examines what some researchers are calling the early signs of a "vulnerability apocalypse" as Anthropic's Claude-powered Project Glasswing identifies thousands of potential software flaws at machine speed.
The episode breaks down the real numbers behind the hype: over 10,000 candidate vulnerabilities flagged, 1,726 confirmed high or critical findings, 97 patched issues, and the growing concern that AI-driven bug hunting could overwhelm already stretched security teams. One example: a critical WolfSSL certificate forgery vulnerability (CVE-2026-5194, CVSS 9.1).
Also in this episode: Canadian authorities arrest Ottawa suspect Jacob Butler, also known as "Dort," allegedly linked to the Kim Wolf botnet operation blamed for nearly 30 terabits-per-second distributed denial-of-service (DDoS) attacks and more than 25,000 incidents.
We also cover active exploitation of a Ghost CMS SQL injection vulnerability (CVE-2026-26980), with attackers reportedly compromising hundreds of websites using ClickFix malware lures, including high-profile targets.
And finally, an Iran-linked cyber espionage campaign dubbed "Screening Serpents" uses highly personalised fake recruitment approaches to target aerospace, defence, and telecom professionals with new remote access malware.
If you work in cybersecurity, infrastructure, or IT leadership, this is one to watch.
00:00 Vunpocalypse Headlines
00:28 AI Finds Vulnerabilities
01:32 False Positives and Costs
02:39 WolfSSL Critical CVE
03:51 Patch Volume Pressure
04:28 Kim Wolf Botnet Arrest
05:13 Botnet Scale and Swatting
06:48 International Takedowns
07:41 Ghost CMS Mass Exploits
09:07 ClickFix Infection Chain
10:25 How to Remediate Ghost
10:39 Iran Spear Phishing Ops
12:51 Closing and Sign Off
#Cybersecurity #CyberSecurityToday #AIsecurity #GhostCMS #DDoS #CyberEspionage #Anthropic #ClaudeAI #IranCyberThreat #InfoSec
Transcript preview
First 90 secondsDavid Shipley· Host0:00
Early evidence of the software vulnerability apocalypse arrives. Alleged Kim Wolf botmaster arrested in Ottawa, Canada. Ghost CMS flaw hits Harvard and Oxford. And Iran-linked hackers run surgical spear phishing. This is Cybersecurity Today, and I'm your host, David Shipley, coming to you from Canada's capital. Let's get started. The early evidence of the rising vunpocalypse is in, and the numbers tell a few interesting stories. Anthropic published an update on Friday on Project Glasswing, the AI-assisted vulnerability discovery initiative that the company first publicly described in April. Since the program went live last month, Anthropic says Claude Mythos has uncovered more than ten thousand candidate vulnerabilities, and more than six thousand of those are flagged as high or critical severity across more than a thousand open source projects. That's the marketing angle, and it's the one getting all the headlines. According to The Hacker News, the program currently runs with about fifty partner organizations who get exclusive early access to a non-public model called Claude Mythos Preview. The model is being used to autonomously scan widely used software and surface flaws before