Good Morning Security Gang!
Episode 981 of the CyberHub Podcast. I’m back with my double espresso (not from 7-Eleven this time—you’ll have to listen in to hear that story) and a stacked show for you today.
We’ve got Jaguar Land Rover still crippled in week two of its shutdown, a major NPM supply chain attack impacting more than 40 packages, a proof-of-concept showing ChatGPT’s calendar integration could be abused, critical Kubernetes chaos mesh flaws, Apple’s latest iOS/macOS patches, regulatory delays from CISA, and industry shakeups with CrowdStrike and Check Point gobbling up AI security startups.
Let’s dig right in.’
🚗 Jaguar Land Rover Shutdown Enters Week Two
Jaguar Land Rover (JLR) confirmed its ransomware incident is still ongoing, with factories in the UK, China, India, and Slovakia offline until at least September 24th. The automaker paused its recovery efforts to avoid compromising forensic investigations.
“This isn’t just another ransomware story—it’s an economic security incident for the UK.”
This prolonged shutdown underscores how deeply integrated JLR’s IT and OT environments are, with the ripple effect hitting suppliers and small businesses across Britain. JLR accounts for 4% of UK exports, so the economic impact is significant. Researchers are calling this an “economic security incident,” showing how cyber risk spills into national security when critical manufacturers go down.
📦 40 NPM Packages Compromised – TruffleHog Used for Secrets Theft
Security firm Socket flagged a massive supply chain attack targeting more than 40 NPM packages. Malicious code injected into Trojanized packages downloaded and ran TruffleHog, a legitimate secrets scanner, to exfiltrate GitHub tokens, AWS keys, and cloud credentials.
“Software supply chain attacks aren’t just getting better—AI is helping attackers scale them.” James Azar
The worm-like campaign self-propagated via compromised maintainer accounts, including one tied to CrowdStrike’s publisher account (though CrowdStrike says no impact was observed). Researchers characterized it as a first-of-its-kind self-replicating worm in NPM, showing how AI-assisted development is being exploited at scale.
📅 ChatGPT Calendar Integration Exploit Demo
Security researchers at Edison Watch demonstrated how ChatGPT’s new MCP tool integration could be abused. By sending a specially crafted calendar invite, an attacker could inject a jailbreak prompt that tricks ChatGPT into exfiltrating sensitive emails from a user’s inbox. This was only a proof-of-concept, not an active exploit, but it highlights the new risk surface of AI integrations with enterprise systems.
☸ Kubernetes Chaos Mesh Vulnerabilities
JFrog disclosed multiple vulnerabilities in Chaos Mesh, a chaos engineering platform for Kubernetes. Four CVEs (up to CVSS 9.8) allowed unauthenticated attackers with minimal cluster access to exploit GraphQL endpoints and gain remote code execution across the cluster. Patched in version 2.7.3, these flaws underline how dev/test tools can become production risks if not patched promptly.
🍏 Apple Patches 50+ iOS/macOS Flaws
Apple rolled out iOS 26, iPadOS 26, and macOS Tahoe 26, fixing more than 50 vulnerabilities, including issues in WebKit, Bluetooth, sandboxing, and Apple Mobile File Integrity. Eleven of these CVEs were already exploited in the wild. If you’re managing Apple fleets—patch now.
🏛 CISA Pushes Back Incident Reporting Rule
CISA delayed its final rule on critical infrastructure cyber incident reporting to May 2026, nine months later than originally planned. Industry had pushed back hard, arguing the draft definitions would force companies to spend more time reporting to regulators than responding to incidents. I’ve said before—the SEC’s materiality-based reporting works better. Forcing a 72-hour disclosure rule mid-response is not practical.
📰 Breach Forums Admin Resentenced
Connor Brian Fitzpatrick, aka PomPomPurin, founder of Breach Forums, was resentenced to three years in prison after previously receiving time served and supervised release. He admitted to running the notorious forum after Raid Forums was seized, with charges ranging from access device fraud to child pornography possession. The appeals court ruled his prior sentence too lenient.
💼 AI Security Acquisitions Heat Up
CrowdStrike acquired Pangea, an AI security startup, to integrate into Falcon.
Check Point acquired Lakera, another AI security firm, expanding its portfolio to better compete with Palo Alto and CrowdStrike.
Both deals highlight the race to consolidate AI security capabilities early, with vendors buying startups post-seed or Series A to fold into existing platforms.
🧠 James Azar’s CISO Take
Today’s show is a reminder that resilience is more than just a buzzword—it’s the economic backbone. JLR’s extended shutdown shows what happens when integrated global supply chains lack proper segmentation. This wasn’t just a company outage; it was a national-level disruption. CISOs in critical manufacturing and OT need to plan for systemic resilience, not just endpoint protection.
The second theme is AI-powered supply chain threats. From NPM worms to ChatGPT calendar exploits, we’re seeing how adversaries are using AI to supercharge their attacks. The software ecosystem is too complex for static defenses—we need continuous auditing, token rotation, and runtime monitoring. Governance needs to evolve as fast as adversaries are innovating.
✅ Action Items
🚗 Segment IT/OT networks—avoid single points of ransomware failure.
📦 Lock NPM package versions, use runtime SBOM validation, and audit for TruffleHog misuse.
📅 Monitor AI integrations like ChatGPT for unexpected data flows.
☸ Patch Chaos Mesh to version 2.7.3 or higher.
🍏 Update all iOS/macOS endpoints to the latest release.
🏛 Track CISA’s delayed reporting rule; prepare for eventual compliance.
📰 Reinforce insider monitoring—cases like Breach Forums show the insider-to-criminal pipeline.
💼 Follow AI M&A trends—these integrations will reshape enterprise defense stacks.
