This Week's Top Five Stories in Cyber

How did Cybercriminals Breach GTA 6 Maker Rockstar Games?

A ransomware note has been issued to Rockstar Games – the company behind fan favourite game GTA. 

After threat actors accessed confidential company data, they threatened the company with a deadline of April 14 2026, past which they would publish the stolen material, in case their demand for payment in cryptocurrency was denied. 

The English-speaking cybercrime group ShinyHunters – notorious for cloud-based attacks –  has claimed responsibility and released data that they say belongs to the gaming titan. 

A representative of the group told Reuters it had stolen 78.6 million records from Rockstar’s Snowflake environment.

Booking.com Hack Exposes Sophistication of Cyber Crime

A series of scams targeting Booking.com customers have exposed the magnitude of the recent data breach at the travel agent giant. 

According to an initial investigation, hackers appeared to gain access to customer data, including names, email addresses, phone numbers and details about present and past booking history. 

Experts on the matter note that such information carries a high risk of exploitation by fraudulent actors to trick customers. 

Dubbed “reservation hijacks” by cybersecurity firm Norton, criminals are contacting Booking.com customers on behalf of hotels to trick them into sending money related to fake reservation issues. 

Numerous customers have reported receiving suspicious messages, prompting Booking.com to update pins for reservations. It is also sending out emails to affected customers, informing them of the recent heightened risk. 

However, the travel marketplace has refused to disclose the number of people affected or the regions the breach spans across. 

The Mythos AI Vulnerability Storm: Key CISO Takeaways

As the zero-day clock is ticking down fast, time has become the dominant risk variable.

Anthropic recently unleashed an AI vulnerability storm with its Claude Mythos (preview) – the company’s latest AI model which has been kept from the public because of its superior bug hunting capability. 

Exposing decades-old vulnerabilities in mainstream software, Mythos has stunned the security industry, evoking a united industry response in the form of Project Glasswing.

The community of security leaders published a recent paper with involvement from the Cloud Security Alliance (CSA) alongside SANS Institute and OWASP contributors titled The ‘AI Vulnerability Storm’: Building a ‘Mythosready’ Security Program.

This draft is an expedited strategy briefing and has contributions from the wider security community, released urgently for the nature of the threat and is authored by Gadi Evron, CEO at Knostic and CISO-in-Residence for AI at Cloud Security Alliance, Robert T. Lee, Chief AI Officer and Chief of Research at SANS Institute and Rich Mogull, Chief Analyst at Cloud Security Alliance. 

Stellantis Boosts AI Cybersecurity with Help From Microsoft 

Leading global automaker Stellantis is getting into a five-year partnership with Microsoft, focusing on co‑development of advanced AI, cybersecurity and engineering capabilities.

To achieve the same, Stellantis’ automotive engineering expertise, multi-brand scale and global operations will work alongside Microsoft’s cloud, AI and security capabilities. The move is designed to accelerate more agile, connected and efficient digital processes across its ecosystem.

People Moves: Caroline Bellamy joins Strider Technologies

Caroline Bellamy is set to expand Strider Technologies’ AI capabilities as the company’s new Executive Director. 

In this role, she will focus on delivering the agentic data refinery that global organisations use to navigate the complexities of global competition.

With more than 35 years of digital and data experience, Caroline possesses a deep background in scaling advanced technology across government, industry and defence sectors. 

Her career is marked by an extensive international footprint, including high-level collaboration across the Five Eyes intelligence alliance comprising Australia, Canada, New Zealand, the UK and the US. 

Most recently, Caroline served as the first-ever Chief Data and Artificial Intelligence Officer for the UK Ministry of Defence (MoD).