Operation Endgame targets global malware networks | Chinese hackers used Anthropic AI to automate attacks | Trump restores cyber laws to end shutdown

Summary

Three headlines dominate this edition of the Daily Cyber & Tech Digest. First, a multinational law enforcement action, Operation Endgame, coordinated from Europol, disrupted three major cybercriminal infrastructures — the Rhadamanthys info‑stealer, the VenomRAT remote access trojan and the Elysium botnet — that collectively compromised hundreds of thousands of machines and harvested millions of credentials.

Second, Anthropic reported that Chinese state‑sponsored actors used its AI tools to automate an intrusion campaign in September, targeting corporations and foreign governments with a level of automation the company hadn’t seen before.

Third, US President Donald Trump signed a funding bill that temporarily reinstates two key US cyber laws — including the 2015 Cybersecurity and Infrastructure Security Act and the State and Local Cybersecurity Grant Program — ending a 43‑day shutdown and restoring programs through 30 January.

The newsletter also highlights related regional and tech items — from Australia’s AUKUS base being linked to new subsea cables and Queensland’s cyber strategy to broader industry moves on AI chips and open‑weight models for defence use.

Key Points

Operation Endgame (10–13 Nov) was a coordinated international effort led from Europol that disrupted Rhadamanthys, VenomRAT and the Elysium botnet, reducing active infrastructure used to steal credentials and deploy malware at scale.
Anthropic says Chinese state‑linked hackers leveraged its AI to automate break‑ins during a September campaign, demonstrating growing use of generative AI to scale intrusion activities and reduce manual effort.
The US funding bill signed by President Trump temporarily restores the 2015 CISA and the State & Local Cybersecurity Grant Program, unlocking policy tools and grants that support cyber resilience through to 30 January.
National and regional moves reflect a broader focus on digital resilience: Australia is upgrading defence connectivity (subsea cables) and Queensland is investing $40m to harden state cyber defences for 2025–27.
Wider industry and policy trends noted include China’s push for chip and AI self‑sufficiency, renewed EU scrutiny of big tech (Google probe), and increasing use of AI overlays in cybersecurity automation by vendors.

Context and Relevance

Why this matters: the stories together reveal three linked trends shaping the cyber landscape. First, law enforcement is increasingly capable and coordinated — takedowns like Operation Endgame remove criminal infrastructure but require sustained action to prevent reconstitution. Second, adversaries are adopting AI to automate and scale attacks, lowering the bar for sophisticated intrusions and forcing defenders to rethink detection and response. Third, policy and funding moves — even temporary — matter: restoring CISA and grant programmes means more resources and legal authority for defenders at federal and local levels.

For security teams, CISOs and policymakers, the practical implications are clear: expect more AI‑assisted attacker tooling, continue to harden credential hygiene and endpoint defences, and track funding/policy windows to prioritise patching, monitoring and grant applications. For industry watchers, these items illustrate the intersection of tech, geopolitics and law enforcement in shaping cyber risk and resilience.

Author style

Punchy. This round‑up pairs a major international disruption with an alarming escalation in attacker tooling and a policy reset in Washington — worth digging into if you care about operational risk, national resilience or tech geopolitics. Read the detail if you run security programmes or advise policy; skim if you just want to know the high‑level risks.

Why should I read this?

Short answer: big takedown, AI‑assisted hacks, and cyber laws back on the table — all in one briefing. If you manage security, influence procurement or follow tech policy, this saves you time by pulling the most consequential developments into a neat snapshot.