The top cybersecurity stories to know this month

The top cybersecurity stories to know this month

The top cybersecurity stories to know this month

https://www.weforum.org/stories/cybersecurity/cybersecurity-and-geopolitics-collide-and-other-cybersecurity-news/

Publish Date: 2026-07-13 12:38:00

Source Domain: www.weforum.org

Author:

Using an unordered list, summarize the following article with between 4 and 8 key points. This regular round-up brings you key cybersecurity stories from the past month.Top cybersecurity news: Geopolitics and cybersecurity collide after the launch of Anthropic’s new AI models; Governments rush to close AI ‘patch window’; Cyberattack on Romanian hospitals serve as a test case for disaster planning.The World Economic Forum’s Centre for Cybersecurity provides an independent and impartial platform to reinforce the importance of cybersecurity as a strategic imperative and drive global public-private action to address systemic cybersecurity challenges.1. US temporarily restricts access to Anthropic’s latest AI modelsThe export controls on Anthropic’s models also led to Open AI limiting access to its latest GPT-5.6 model to vetted partners only.At the G7 summit in France, the Trump administration then proposed a “trusted partner scheme” for cutting-edge AI technology. Being a trusted partner would mean G7 members – and other allies – could gain broader access to advanced AI models to develop stronger cybersecurity and other defences. However, with AI vital not only to national and cybersecurity, but also to competitiveness, the discussions resurfaced concerns about using technology as political leverage and the need for Europe and other regions to develop AI sovereignty.2. Closing the ‘patch window’ as new AI threatens to supercharge hackingSimilarly, in the private sector, boards are looking for reassurance that their organizations understand the threat frontier AI could pose and are prepared to head them off. This growing recognition is translating into concrete action across organizations. In January, the Forum’s Global Cybersecurity Outlook 2026 found that the percentage of respondents assessing the security of AI tools has nearly doubled over the past year, from 37% in 2025 to 64% in 2026.Moreover, speed of response will be even more critical as new AI models hit the mainstream. The Five Eyes intelligence alliance (US, UK, Canada, Australia, New Zealand) has warned that frontier AI models are going to supercharge cyber hacking threats. In a statement, the alliance cautioned that these new models will further lower barriers for hackers. It urges organizations to draw on AI itself to strengthen their own defences, including against zero-day vulnerabilities.Fighting fire with fire might help address some issues. However, Infosecurity’s survey shows that despite 21% struggling with growing data volumes and 17% needing to manually “stitch together” threat data, experts remain cautious about AI for decision-making.DiscoverHow the Forum helps leaders understand cyber risk and strengthen digital resilience Show moreThe Centre for Cybersecurity provides a trusted platform where leaders come together to make sense of evolving cyber risks and their systemic implications. It focuses on building understanding and trust in an increasingly interconnected digital world.By enabling cross-sector collaboration and insight sharing, the Centre helps partners strengthen cyber resilience and address challenges that require collective responses.3. News in brief: Top cybersecurity stories this monthCyber-attacked Romanian hospitals are a lesson to the world: Following a ransomware attack on a widely used medical administration software in 2024, more than 100 hospitals in Romania had to disconnect from the internet for five days and switch to paper documentation. It’s considered one of the worst medical cyber attacks globally and, as such, is being used as an example of how best to respond in the case of “a mass hospital hack”, reports the BBC.Microsoft issues record number of patches: June saw a record-breaking amount of Microsoft patches for more than 200 vulnerabilities in one drop, Computer Weekly reports. This is up from 170 in October 2025, underlining the increasing speed at which vendors must address vulnerabilities.Confidential data stolen from Novo Nordisk: The maker of the weight loss drugs Wegovy and Ozempic experienced a major hack in mid-June, with cyber extortion group FulcrumSec demanding a $25 million ransom. The Danish pharma company refused payment. The attackers claimed to have stolen patient data, source code, information on existing and new drugs and internal AI model information. AI builds ransomware toolkit: Researchers at cybersecurity firm Sophos detected an AI-built ransomware toolkit that automates EDR (Endpoint Detection and Response) evasion and Active Directory discovery. By streamlining key attack stages, overcoming commonly used EDR systems, the toolkit could enable attackers to compromise enterprise environments more quickly and efficiently.NAIC suspends investment risk designations: In the US, the National Association of Insurance Commissioners (NAIC) was forced to suspend the assignment of investment risk designations after ShinyHunters accessed credit‑rating data from multiple suppliers. The attack prompted rating agencies to pause data sharing with NAIC, affecting insurers’ calculation of capital requirements for policyholder obligations.Nearly two-thirds of respondents in a World Economic Forum survey say they have been targeted by cybercrime. Image: World Economic Forum 4. More about cybersecurity on Forum StoriesDisrupting the cybercrime economy: Cybercrime has become a converged criminal economy, says Derek Manky of Fortinet. Ransomware, fraud, trafficking, money laundering and organized crime have merged, making isolated responses ineffective. Defending against attacks requires sharing intelligence, public-private cooperation, and cross-domain coordination to disrupt these ecosystems. Your home – cybersecurity’s front line: A third of cyberattacks on C-suite executives originate at home, not in secure corporate networks. Hackers often target insecure home-office networks and executives’ family members, including children and older adults. Elçin Biren, CEO of Swiss CyberSmart, argues that true cyber resilience should shift from one-off compliance to ongoing, adaptable learning from an early age.Protecting citizens against cybercrime: While cyberattacks on large corporations are well-covered, most against private individuals go unreported, creating a knowledge gap. Rory Innes, CEO of Cyber Helpline, notes these attacks span various areas but are often viewed separately by industry and policymakers. A unified model to track threats would improve prevention and reduce systemic risks.