skip to content

Cyber / Brief — 3 Jul 2026

Europe's top court closed the book on one of its longest antitrust wars, upholding the €4.1 billion Android fine and handing Brussels a decisive win over Google — just as a US Supreme Court ruling reopened the fight over whether transatlantic data flows can survive a fresh legal…

Europe's top court closed the book on one of its longest antitrust wars, upholding the €4.1 billion Android fine and handing Brussels a decisive win over Google — just as a US Supreme Court ruling reopened the fight over whether transatlantic data flows can survive a fresh legal challenge, a reminder that the rules of the digital economy are still being set in courtrooms as much as boardrooms. Washington, meanwhile, reversed course and lifted the export controls that had frozen Anthropic's most powerful models, ending the Fable ban and exposing America's own divisions over how to govern frontier AI, even as Europe was urged to build its own AI and fear it in the same breath. The sovereignty theme carried into the continent's money and identity debates, from a warning that bank lobbying could hollow out the digital euro to fresh EUDI-wallet pilots and the ECB's continued case for public digital cash. On the security front the throughline was surveillance and automation turning on their makers: Citizen Lab confirmed that Pegasus had reached the phone of a European lawmaker who had been investigating the spyware — denounced as a direct attack on the rule of law — while researchers documented the first fully agentic ransomware operation, an AI agent that broke in, stole credentials and wiped production data in minutes, and Google and the FBI moved to dismantle a residential-proxy network built from two million hijacked home devices.

Top Stories


AI & Power

The Anthropic Fable Ban Is Over. The Battle Over How to Tame AI Has Just Begun.Technology - WSJ.com
Why it matters: US lifts jailbreak-linked export controls; Anthropic's Fable ban ends as the fight over taming AI reopens
Washington’s move to unblock Anthropic’s model underscores America’s divisions over how to regulate cutting-edge technology.

Trump puts allies on notice: AI power comes firstAxios
Why it matters: Trump tells allies AI power comes first, signalling minimal guardrails
President Trump is redefining what it means to be a U.S. ally in the AI era. Why it matters: For the White House , it's now about how partners can help the U.S. win the AI race. For decades, shared values and security interests have underpinned alliances with Europe and other partners around the world. Under Trump, that's no longer enough. As AI becomes central to economic and military power, frontier AI models, chips and infrastructure are turning into new instruments of American influence. Dri

UN warns of need for global governance to avoid an AI-pocalypsewww.theregister.com - Articles
Why it matters: UN pushes global AI governance to avoid an 'AI-pocalypse'
A United Nations report on AI warns the technology is moving faster than governments can keep up, and the window of opportunity to establish effective global governance of it will not be open forever. The Preliminary Report from the UN's Independent International Scientific Panel on Artificial Intelligence presents AI as something of a mixed blessing. It says that the potential benefits of AI are enormous. If deployed and applied thoughtfully, the technology could support progress towards sustai

Read the Emails Revealing How Anthropic’s Pentagon Relationship Fell ApartTechnology - WSJ.com
Why it matters: Leaked emails show Anthropic's Pentagon relationship falling apart
Undersecretary Emil Michael and CEO Dario Amodei went back and forth for months over safety guardrails.

Anthropic's AI Finds Bugs. IBM Bets $5B It Can Fix Them.darkreading
Why it matters: IBM bets $5B that Anthropic's bug-finding AI can also fix them
IBM and Red Hat assign 20,000 engineers to the new Project Lightwell service as Anthropic's Mythos findings ignite debate over how to secure the open-source software supply chain.

You Can Now Sound the Alarm on AI Behaving BadlyWIRED
Why it matters: New channel lets insiders raise the alarm when AI behaves badly
Are you worried your AI chatbot is trying to build a bomb or leak personal information about you? There’s a website for that.

Scientists Asked AI to Impersonate 112 Public Figures. What Happened Next Is a ‘Dire’ Warning404 Media
Why it matters: AI impersonated 112 public figures in a test — a 'dire' warning
🌘 Subscribe to 404 Media to get The Abstract , our newsletter about the most exciting and mind-boggling science news and studies of the week. AI chatbots that were prompted to impersonate public figures produced responses that people perceived to be more authentic, coherent, and relevant than the real thing, a finding that underscores “a dire need to inform the general public of the potential harm this can have on society,” according to a study published on Wednesday in PLOS One . The research a

Claude Helped a Hacker Find a Way to Issue Tickets to Almost Every US Music FestivalWIRED
Why it matters: Claude misused to issue tickets to nearly every US music festival
A researcher found that using Anthropic’s Claude Opus 4.7, he could break into the website of Front Gate—used by every festival from Lollapalooza to Bonnaroo—and freely issue any ticket he chose.

Companies Are Throttling Employees’ AI Use Because It’s Too Expensive404 Media
Why it matters: Firms start throttling staff AI use because it is too expensive
Companies across tech, entertainment, banking, and many other industries are throttling their employees’ use of AI and pleading with workers to use less powerful models to stop AI costs from spiraling out of control, according to leaked Slack chats, screenshots of internal dashboards, emails, and more material obtained by 404 Media from half a dozen companies including Atlassian, Adobe, and Amazon. In at least one case, AI spending has tripled to more than $15 million a month. The news shows the


EU & Technology

Top EU court upholds Google Android fine in landmark antitrust caseTechnology – POLITICO
Why it matters: EU's top court upholds the landmark Google Android antitrust fine — final defeat
BRUSSELS — Europe’s top court on Thursday dismissed Google’s appeal against a €4.1 billion Android antitrust fine, handing the European Commission a major victory in one of its longest-running antitrust battles with Big Tech. The Court of Justice of the European Union upheld a lower court’s 2022 judgment , which largely backed the Commission’s finding that Google abused its dominant position by imposing restrictions on makers of smartphones that use its Android operating system and mobile networ

Supreme Court decision threatens EU-US data transfer agreementThe Record from Recorded Future News
Why it matters: US Supreme Court ruling threatens the EU-US data transfer agreement
In a Tuesday letter, Max Schrems, the founder of the Vienna-based privacy advocacy organization noyb, told European officials he plans to sue to invalidate the EU-U.S. Data Privacy Framework (DPF) that allows for the transfer of personal data from the EU to U.S. companies.

Interne Dokumente: EU-Staaten wollen Chatkontrolle-Zombie zurückbringennetzpolitik.org
Why it matters: EU states move to revive Chat Control client-side scanning
Die EU-Staaten wollen ein totes Gesetz zur freiwilligen Chatkontrolle zurückbringen. Im EU-Parlament regt sich Widerstand. Die Verhandlungen zur dauerhaften Chatkontrolle-Verordnung gehen in die Sommerpause. Wir veröffentlichen eingestufte Verhandlungsdokumente. Abschlusszeremonie der zyprischen EU-Ratspräsidentschaft. – Alle Rechte vorbehalten: Zyprische EU-Ratspräsidentschaft Die EU-Staaten wollen die Datenschutz-Regeln wieder schwächen, damit Internet-Dienste Inhalte ihrer Nutzer durchsuchen

Digitale Autonomie 2.0: en nu echtBert Hubert's writings
Why it matters: A rallying call for real European digital autonomy
Afgelopen 25 juni deed ik het openingspraatje van de Surf Privacy en Security Conferentie. Nou heb ik vaker over digitale autonomie gesproken, maar deze keer heb ik het nadrukkelijk meer over wat er nu moet gebeuren. Of zoals de titel zegt “en nu echt”. Ondanks dat ik nu letterlijk meer dan 50 praatjes over dit onderwerp heb gegeven had ik nog niet eerder de moeite genomen een goed transcript te maken.

Is the EU competitiveness push stuck in the European parliament?myFT following
Why it matters: EU competitiveness agenda stalls in the European Parliament
Also in this newsletter: Pegasus targeted Greek former MEP while they were probing the spyware World

One unicorn a week: Europe's new model for billion-dollar startupsSifted
Why it matters: Europe's new one-unicorn-a-week startup model

Should the EU block the UK from its €5bn superfund?Sifted
Why it matters: Fight over whether to block the UK from the EU's EUR5bn scaleup superfund


US & Technology

Google’s AI buildout drove 37% increase in electricity use in 2025Ars Technica - All content
Why it matters: Google's AI buildout drove a 37% jump in its electricity use
Google reported that its annual electricity consumption rose by 37 percent in 2025—the largest increase in the company’s history as Silicon Valley’s AI data center buildout continues. But the tech giant says it kept operational carbon emissions down by continuing to purchase massive amounts of clean energy. The company’s latest sustainability report acknowledges that Google’s total electricity usage has increased by more than 250 percent since 2019, which the company attributed to ongoing growth

Musk’s X poses “serious risk to Americans’ privacy,” advocates warn FTCArs Technica - All content
Why it matters: Advocates warn the FTC that Musk's X is a serious privacy risk
Ahead of a July 2 deadline to submit public comments, advocates are warning the Federal Trade Commission that it must keep close watch over Elon Musk’s X and firmly reject a recent bid to end the agency’s ongoing audits of the platform’s data handling. Last month, the FTC posted a notice explaining that X had argued that an FTC order was no longer necessary due to changes Musk had made to the platform. The initial order came as a penalty after the FTC found that a coding error had caused then-Tw

To Reduce Electrical Grid Strain Amid Heat Wave, Data Centers Are Ordered to Use Backup PowerNYT > Technology
Why it matters: Data centres ordered onto backup power as heat strains the grid
As triple-digit temperatures engulf much of the United States, the Trump administration wants grid managers to require the use of backup power that often goes unused.

Starlink Dominates Internet From Space. Can It Disrupt AT&T and Verizon on the Ground?Technology - WSJ.com
Why it matters: Starlink's space-internet dominance eyes AT&T and Verizon's turf
SpaceX wants its satellite network to eventually serve cellphones in dense urban areas, but capacity and infrastructure hurdles remain.

SpaceX Showed Investors Prototype of Elon Musk’s New AI DeviceTechnology - WSJ.com
Why it matters: SpaceX shows investors a prototype of Musk's new AI device
The sleek, handset-like prototype was designed to integrate AI technology from SpaceX’s xAI.

Apple ‘Hide My Email’ Vulnerability Reveals Peoples’ Real Email Addresses404 Media
Why it matters: Apple 'Hide My Email' flaw exposed users' real addresses
A vulnerability in Apple’s “Hide My Email” tool lets almost anyone discover a person’s real email address that is supposed to be hidden by the feature, and Apple has failed to fix it for more than a year, according to a security researcher and 404 Media’s own tests. 404 Media is not revealing the exact details of the vulnerability because it can still be exploited as of Monday, when 404 Media verified the issue with one of our own hidden email addresses.


China & Technology

Anthropic is removing its covert code for catching Chinese competitorswww.theregister.com - Articles
Why it matters: Anthropic removes covert code used to catch Chinese competitors
Anthropic says that it plans to remove hidden codes it added to Claude Code several months ago to catch other AI companies that are trying to steal from its models. Thariq Shihipar, an engineer at Anthropic who works on the Claude Code team, said on Tuesday that a fix should appear on July 1. "This is an experiment we launched in March that was meant to prevent account abuse from unauthorized resellers and protect against distillation," Shihipar explained, using the industry term for copying AI

China’s EUV Lithography Progress: Parsing Signal From NoiseThe Diplomat
Why it matters: Parsing signal from noise on China's EUV lithography progress
China faces three specific barriers as it aims to produce key chipmaking equipment. Monitoring progress in these areas would help Western countries make better chip and AI policy.

Inside CXMT’s US$4.3b IPO: soaring profits meet US export threat and high-stakes HBM raceTech - South China Morning Post
Why it matters: CXMT's $4.3B IPO collides with US export threat and the HBM race
As China’s leading DRAM maker ChangXin Memory Technologies (CXMT) prepares for its expected 29.5 billion yuan (US$4.3 billion) Shanghai Star Market listing, the critical question facing investors is whether the firm can convert its cyclical windfall into permanent industry leadership. The Hefei-based chipmaker enters the market at a uniquely lucrative moment: a global memory shortage driven by surging artificial intelligence computing demand has triggered a massive upcycle in pricing, delivering

China’s EV makers are taking over the European factories Ford and Nissan can’t fillRest of World -
Why it matters: China's EV makers take over European factories Ford and Nissan can't fill
China’s EV makers, squeezed at home, are moving into Europe’s idle car factories. Chery will start building EVs later this year at a former Nissan plant in Barcelona, Spain. It…

Job ads show DeepSeek aims for an AI agent with cybersecurity capabilitiesThe Strategist
Why it matters: DeepSeek job ads point to an AI agent with cybersecurity capabilities
New job postings from DeepSeek show the Chinese AI lab plans to build an agentic model that can find vulnerabilities in code. These details, buried in a hiring round, show DeepSeek’s new strategy following the …

Singaporean Police Seize $42M Bungalow in Nvidia Chip Smuggling ProbeThe Diplomat
Why it matters: Singapore seizes $42M bungalow in an Nvidia chip-smuggling probe
Investigators allege that four individuals deliberately concealed the actual end-user of servers thought to contain advanced Nvidia AI chips.


Defence & National Security

Russia “Highly Likely” Behind Drone Incursions Over U.S. Bases In England Report ConcludesTWZ
Why it matters: Report: Russia 'highly likely' behind drone incursions over US bases in England
Back in November 2024, TWZ broke a story about a series of incursions over U.S. bases in England by drones of mysterious origin. While the source of these uncrewed aerial vehicles does not appear to have been officially determined, a new report suggests they were launched by Russian ships . Produced by the International Institute for Strategic Studies (IISS), the report investigated a spate of drone incursions across Europe that began in August 2024 and found that “it is highly likely that the K

Germany indicts Ukrainian over Nord Stream sabotage, alleges Kyiv-backed plotPolicy – POLITICO
Why it matters: Germany indicts a Ukrainian over the Nord Stream sabotage
German federal prosecutors on Thursday confirmed they had charged a Ukrainian national over the 2022 sabotage of the Nord Stream pipeline , accusing him of acting as an accomplice in a war crime. According to an indictment filed on June 30 and seen by POLITICO, prosecutors accuse a man known as Serhii K. of acting as an accomplice in a war crime by carrying out an “attack against civilian objects,” causing an explosion, destroying structures and disrupting public utilities. The development bring

How NATO is facing mounting cybersecurity challengesAtlantic Council
Why it matters: How NATO is facing mounting cybersecurity challenges
NATO's cyber defenses boast strong policy and training, but uneven capabilities and rising state threats will continue to pose major challenges. The post How NATO is facing mounting cybersecurity challenges appeared first on Atlantic Council .

More Espionage than Firepower: The Right Analogue for Understanding Cyber OperationsModern War Institute
Why it matters: Cyber operations are more espionage than firepower — the right analogue
Many analysts expected cyber operations to play a major role in Iran’s response to the US-Israeli military campaign. Yet Iranian-linked cyber activity initially played little visible operational role and has […] The post More Espionage than Firepower: The Right Analogue for Understanding Cyber Operations first appeared on Modern War Institute .

Drone maker Quantum Systems raises $1.2bn, eyes humanoidsSifted
Why it matters: Drone maker Quantum Systems raises $1.2bn, eyes humanoids

GenAI.mil records almost 1.7M users, plans new model additionsDefense One - All Content
Why it matters: GenAI.mil hits nearly 1.7M users as the Pentagon scales generative AI
“It's just a really exciting time for generative AI in the department,” the Pentagon’s chief artificial intelligence officer said.


Digital Sovereignty & Identity

If EU leaders let banks write the rules, the digital euro will fail as public moneyEUobserver
Why it matters: If banks write the rules, the digital euro fails as public money
The European Parliament’s recent vote on the digital euro regulation marks an important step toward public money and a sovereign payment system for the digital age. The vision is simple: give people the choice to hold and pay with the safest form of money – public central bank money – in digital form. Intense bank lobbying has, however, significantly weakened this public interest vision in the last years. The co-legislatures’ (Parliament, Council and Commission) legislative texts now strike diff

Piero Cipollone: The digital transformation of money, payments and financeECB - European Central Bank
Why it matters: ECB's Cipollone on the digital transformation of money and payments

EU consortium demonstrates SSI alignment with EUDI Wallets in 2 initial pilotsBiometric Update
Why it matters: EU consortium shows self-sovereign identity aligning with EUDI Wallets
A consortium of European organizations has completed its initial pilots of privacy-preserving self-sovereign identity (SSI) solutions, and says they validate the potential of the technologies it has developed to improve the security and user control of digital identity data. The TrustED consortium consists of 10 organizations from across 5 EU countries, and is funded by the European Union. Spain-based IT innovation non-profit Gradiant leads the consortium, which also includes Spanish peers Tree

Ireland digital wallet consultation closes, government moves to pilot stageBiometric Update
Why it matters: Ireland's digital wallet consultation closes, moves to pilot
The government of Ireland is expressing confidence in its digital transformation initiative, having wrapped the public consultation on its digital wallet . In a post on LinkedIn, Louise McKeever, chief information officer at the Department of Public Expenditure, Infrastructure, Public Service Reform and Digitalisation (DPER), says the government is now moving into the pilot phase of its wallet rollout. Per the DPER website , testing “will help stress-test the infrastructure and the support mecha

Switzerland delays digital ID rollout to strengthen trust infrastructureBiometric Update
Why it matters: Switzerland delays its digital ID to shore up trust infrastructure
The Swiss government says it prefers security over speed in the rollout of its national digital ID (e-ID) as it is delaying the process until next year in order to finalize work being done on aspects related to the trust infrastructure around the system. According to a statement from the Federal Office of Justice (FOJ), the government is in the process of incorporating proposals that were made by opposition politicians in order to have a digital ID system that meets the highest security and data

Using a Mobile Driver's License at the Airport: How TSA Checkpoint mDL Acceptance WorksSpruceID
Why it matters: TSA checkpoints accept mobile driving licences — mDL goes mainstream
You walk up to the podium, open your phone's wallet, and tap it against a small reader or scan a QR code on its screen. A few seconds later, the officer sees your photo and a short set of details, and you keep moving. No handing over a plastic card. That interaction looks simple, but it relies on a chain of standards and trust decisions working together. When one link is missing, the option disappears, and you reach for your physical ID instead. This post walks through what actually happens at t


Threat Intelligence (CTI)

[P2] ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google APIThe Hacker News
Why it matters: ToddyCat-linked Umbrij malware abuses OAuth to read Gmail via Google API
ToddyCat is linked to new malware, Umbrij, that abuses OAuth to reach corporate Gmail via the Google API for stealthy mailbox access.
severity high · EU: NIS2, GDPR · actor ToddyCat (60%)

[P3] New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit ReposThe Hacker News
Why it matters: ChocoPoC RAT targets vulnerability researchers via fake PoC repos
ChocoPoC, a data-stealing RAT, hides inside fake Python proof-of-concept repos on GitHub that claim to exploit hot CVEs, then steals credentials and opens a shell.
severity medium · EU: NIS2

[P3] [DEEP RESEARCH] Operation Endgame Was the Takedown. The Rebuild Is the Test.Threat Intelligence on Medium
Why it matters: Operation Endgame: the takedown worked, the rebuild is the real test
Analysis of the aftermath of Operation Endgame argues the botnet takedown's real test is whether the ecosystem rebuilds — infrastructure and affiliates re-forming after disruption.
severity medium · EU: Europol/EU LE cooperation, NIS2

[P3] Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware DeliveryThe Hacker News
Why it matters: Analysis of 3,000 live ClickFix payloads exposes API-driven malware delivery
A study of ~3,000 live ClickFix payloads shows the fake 'prove you're human' lures are now served by API-driven back ends that hand each victim the same malware in a different disguise, with a new script-scanning-evasion delivery method.
severity medium · exploited in the wild · EU: NIS2

[P3] New Abuse of the ClickOnce Technology, Part 2: Stop Threat Actors from Clicking Once and Staying ForeverBlog
Why it matters: CrowdStrike details fresh abuse of Microsoft ClickOnce for stealthy persistence
CrowdStrike details fresh abuse of Microsoft ClickOnce application deployment to gain stealthy, persistent execution on victim hosts.
severity medium · EU: NIS2


Quantum & Cryptography

IQM becomes first European quantum computing company to list on a major US exchangeTech.eu
Why it matters: IQM becomes the first European quantum firm to list on a major US exchange
IQM Quantum Computers today became the first European quantum computing company listed on a major US stock exchange. Based on the transaction proceeds, IQM (Nasdaq: IQMX) maintains a strong pro forma cash position of €337 million. The company enters the public markets with strong commercial momentum and a rapidly expanding global footprint — having sold 23 quantum computers worldwide, more than any other quantum manufacturer. Central to that leadership is its Production Quantum model: full-stack

Shanghai unveils quantum computing hub as China races for tech supremacyTech - South China Morning Post
Why it matters: Shanghai unveils a quantum-computing hub as China races for supremacy
Shanghai is stepping up its push into quantum computing by launching a dedicated industrial hub in the city, bringing together a group of companies to accelerate the development of the emerging technology and compete with other Chinese cities that have established quantum industry clusters. The Shanghai Quantum Computing Future Industry Incubation Zone, launched on Tuesday in the city’s Xuhui district, has attracted an initial cohort of 26 quantum firms. The zone would offer resources, talent…


Cybersecurity & Threats

[P1] EU Politicians Investigated Pegasus Spyware. Then It Ended Up on One of Their PhonesWIRED
Why it matters: Pegasus spyware found on the phone of an MEP who was investigating Pegasus
Mercenary spyware compromise of a sitting MEP's device; Citizen Lab confirmed the infection of a parliamentarian who had been investigating Pegasus.
severity high · exploited in the wild · EU: EU rule of law, PEGA inquiry follow-up, GDPR/ePrivacy · actor Commercial spyware operator (Pegasus ecosystem) (50%), escalation

[P1] Sysdig Details JADEPUFFER, the First Documented Agentic Ransomware OperationHackread – Cybersecurity News, Data Breaches, AI and More
Why it matters: Sysdig details JADEPUFFER, the first documented agentic ransomware operation
First documented end-to-end agentic ransomware: an LLM agent abused a Langflow flaw, harvested credentials, reached production MySQL and destroyed Nacos configuration data within minutes.
severity critical · exploited in the wild · EU: NIS2, AI Act (high-risk misuse) · actor Unattributed (AI-orchestrated) (20%), escalation

[P2] SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active ExploitationThe Hacker News
Why it matters: SharePoint RCE CVE-2026-45659 added to CISA KEV after active exploitation
Deserialization-of-untrusted-data RCE in on-prem Microsoft SharePoint Server, added to CISA KEV on evidence of active exploitation.
severity high (CVSS 8.8) · exploited in the wild · CVE-2026-45659 · EU: NIS2

[P2] Medtronic notifies customers impacted by ShinyHunters data breachBleepingComputer
Why it matters: Medtronic notifies patients after a ShinyHunters data breach exposed personal data
Medical-device maker Medtronic is notifying customers that personal data was exposed to an unauthorised third party in a ShinyHunters-linked breach.
severity high · EU: GDPR, NIS2 (health) · actor ShinyHunters (55%)

[P2] New CitrixBleed Vulnerability Exploited Immediately After Public DisclosureSecurityWeek
Why it matters: New CitrixBleed NetScaler flaw exploited immediately after disclosure
NetScaler memory-overread bug (CitrixBleed-style) being exploited with public PoC to read arbitrary response memory and lift session material immediately after disclosure.
severity high · exploited in the wild · EU: NIS2

[P3] Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home DevicesThe Hacker News
Why it matters: Google disrupts NetNut residential-proxy network across 2M home devices
Google's Threat Intelligence Group, with the FBI and Lumen, degraded NetNut/Popa, a residential-proxy network that turned ~2 million home devices into rented relays.
severity medium · EU: NIS2, EU cybercrime cooperation · actor NetNut / Popa operators (50%)

tagged