https://ftrcrp.org/tags/anthropic-glasswing/Recent content in Anthropic-Glasswing on FTRCRPHugoen-us2026 FTRCRPTue, 19 May 2026 00:00:00 +0000https://ftrcrp.org/security-digest/owa-glasswing-and-a-refused-ransom/Tue, 19 May 2026 00:00:00 +0000https://ftrcrp.org/security-digest/owa-glasswing-and-a-refused-ransom/A critical Exchange OWA cross-site scripting flaw (CVE-2026-42897) is being exploited via crafted email, CISA pushed it to KEV inside 24 hours. Anthropic loosened the Mythos disclosure policy on Project Glasswing, partners can now share AI-found zero-days more broadly. The Coinbase Cartel listed Grafana on its leak site and Grafana publicly refused the ransom. The mini Shai-Hulud worm hit 170+ npm packages and 2 PyPI packages across TanStack, Mistral AI, and Guardrails AI namespaces. MuddyWater’s Q1 espionage campaign turns out to span nine countries including a major South Korean electronics maker. Stortinget’s Epstein commission of enquiry held its first session, the work has started.