Today’s Threatopia briefing covers zero-days exploited for years, ransomware shutting down hospital systems, AI agents being hijacked, and warnings of imminent nation-state retaliation.

We have a Cisco SD-WAN zero-day abused for at least three years. APT28 exploiting a Microsoft MSHTML flaw with malicious shortcut files. APT37 breaching air-gapped networks using removable media. Hospitals in Mississippi forced offline by ransomware. And Google warning of likely Iranian cyber operations amid escalating geopolitical tensions.

At the same time, AI is reshaping the threat landscape from multiple angles. We’re seeing browser-level AI privilege escalation in Chrome’s Gemini panel, large-scale AI scraping becoming a board-level risk, AI agents like OpenClaw exposed to takeover, and major policy fallout around Anthropic’s technology in federal environments.

This episode is about convergence. Nation-state activity, ransomware impact, AI platform risk, and supply chain governance are no longer separate conversations. They are one interconnected risk surface.