A **WIRED** investigation, based on Department of Homeland Security records, revealed the identities of paramilitary Border Patrol agents who frequently used force against civilians during Operation Midway Blitz in Chicago last fall. Several of the agents, **WIRED** found, appeared in similar operations in other states around the US. ## CBP Facility Codes Leaked via Online Flashcards In a separate incident, **WIRED** discovered flashcards on the online learning platform **Quizlet** containing gate codes to **Customs and Border Protection (CBP)** facilities. This exposure of sensitive facility information through basic **Google** searches underscores the need for better data protection practices. ## Apple Issues Rare Backported Patches for DarkSword Hacking Tool In a rare move, **Apple** released “backported” patches for **iOS 18** to protect millions of users from the **DarkSword** hacking technique found in the wild. Discovered in March, **DarkSword** allows attackers to infect iPhones simply by visiting a website loaded with the exploit. While **Apple** initially urged users to update to **iOS 26**, they ultimately issued the **iOS 18** patches due to the continued spread of **DarkSword**. ## Iran Threatens Attacks on US Tech Firms Amidst Ongoing Conflict The US-Israel conflict with Iran continues, with Iran threatening to launch attacks against over a dozen US companies, including tech giants like **Apple**, **Google**, and **Microsoft**, which have offices and data centers in the Gulf region. The ongoing conflict is disrupting the global economy, with shipping crews stranded in the Strait of Hormuz. ## Anthropic's Claude Code Leak Leads to Malware Distribution After **Anthropic** accidentally made the source code for its **Claude Code** tool public, the code was rapidly reposted on **GitHub**. Security researchers have warned that some of these repositories contain infostealer malware. **Anthropic** has been issuing copyright takedown notices to remove the leaked code, initially targeting over 8,000 repositories before narrowing it down to 96. This isn't the first time that hackers have capitalized on interest in **Claude Code**. In March, **404 Media** reported that sponsored ads on **Google** led to fake installation guides that directed users to run commands that would download malware. ## FBI Wiretap Tools Hacked; Declared a National Security Risk The **FBI** has classified a recent cyber intrusion into one of its surveillance collection systems as a “major incident” under **FISMA**, a designation reserved for breaches posing serious risks to national security. The breach, reported to Congress, is believed to be the first time since at least 2020 that the bureau has declared a major incident on its own systems. **Politico** reported that China is suspected to be behind the intrusion, potentially marking a significant counterintelligence failure. The **FBI** detected “suspicious activities” on its networks in February. The compromised systems held unclassified data, including phone and internet metadata collected under court orders and personal information pertaining to subjects of **FBI** investigations. The intruders reportedly gained access through a commercial internet service provider, using what the **FBI** described as “sophisticated tactics.” This breach is part of a pattern of intrusions into the **FBI**'s systems. In 2023, a hacker accessed files from the bureau's Epstein investigation. Last month, Iranian-linked hackers compromised former **FBI** Director Kash Patel's personal email. The **Salt Typhoon** campaign, uncovered in 2024, saw Chinese hackers burrow into telecom and internet service providers, potentially compromising the same surveillance infrastructure affected in the current breach.