Mandos Mandos
Brief

Brief #121: Apple Memory Integrity, HybridPetya UEFI Bypass, npm Packages Compromised

Nikoloz Kokhreidze

Nikoloz Kokhreidze

9 min read

AI agents now exploit zero-days in under 10 minutes while energy sector attacks surge 586%. Web3 hackers earn millions as traditional security salaries lag behind.

mandos brief cybersecurity newsletter

Happy Sunday!

The renewable energy transition is turning into a cybersecurity nightmare for European utilities, with attacks jumping 586% last year alone - seems like going green comes with some unexpected red flags.

In this week's brief:

  • HybridPetya ransomware surfaces with UEFI Secure Boot bypass capabilities, marking the fourth bootkit of its kind we've seen
  • Hexstrike-AI drops as a game-changing framework that lets threat actors orchestrate 150+ AI agents to exploit targets in under 10 minutes
  • Web3 white hats are making millions from bug bounties while traditional cybersecurity salaries look increasingly modest in comparison

A quick note before we dive in.

Member-Only Content

Join Mandos to Continue Reading

Get instant access to this article and the Mandos Brief - your weekly 10-minute security leadership update.

Already a member? Sign in

Nikoloz Kokhreidze

Share With Your Network

Check out these related posts

Brief #149: FortiClient EMS Zero-Day, EU Commission 340GB Breach, LinkedIn BrowserGate
Apr 5, 2026 10 min read

Brief #149: FortiClient EMS Zero-Day, EU Commission 340GB Breach, LinkedIn BrowserGate

Nikoloz Kokhreidze Nikoloz Kokhreidze
Brief #148: Telnyx PyPI Supply Chain Attack, F5 BIG-IP RCE Exploited, Databricks Launches Lakewatch SIEM
Mar 29, 2026 6 min read

Brief #148: Telnyx PyPI Supply Chain Attack, F5 BIG-IP RCE Exploited, Databricks Launches Lakewatch SIEM

Nikoloz Kokhreidze Nikoloz Kokhreidze
Brief #147: Trivy CanisterWorm, Stryker Wiper Attack, XBOW Hits $1B
Mar 22, 2026 10 min read

Brief #147: Trivy CanisterWorm, Stryker Wiper Attack, XBOW Hits $1B

Nikoloz Kokhreidze Nikoloz Kokhreidze