A practitioner breakdown of the IBM X-Force Threat Intelligence Index 2026. Vulnerability exploitation overtakes phishing as the top attack vector, supply chain compromises quadruple, and AI accelerates attacker operations while defenders struggle with the basics.
The FBI’s February 19, 2026 FLASH advisory (FLASH-20260219-001) documented something that should prompt a serious conversation in every bank, credit union, and fintech security team: over 700 ATM jackpotting incidents occurred in the United States in 2025 alone, resulting in more than $20 million in direct losses. Since 2020, roughly 1,900 incidents have been logged. The Department of Justice puts the total losses attributed to jackpotting since 2021 at approximately $40.7 million.
Security research reveals OpenClaw (formerly Clawdbot) has fundamental architectural flaws that make it function like malware. With 100,000+ users, exposed instances leaking credentials, and infostealers already targeting it, this viral AI agent proves we need AI governance now.