Amazon Kiro Prod Disruption, Claude Code Security, Salt Typhoon Warning, and Youth Radicalization

Feb 23, 2026

AI-driven attacks and how automation cracked hundreds of firewalls using weak access controls. An AI coding agent tied to a major production disruption and the push for strict guardrails. A new AI code-scanning tool that maps data flows and flags vulnerabilities. A global cyber threat exploiting unpatched systems and weak passwords. Rising concerns about online radicalization and youth-targeted recruitment.

Ask episode

AI Snips

Chapters

Transcript

Episode notes

INSIGHT

AI Lowers The Bar For Global Firewall Attacks

AI drastically reduces attacker skill requirements for large-scale breaches.
A Russian-speaking attacker used generative-AI Python and Go tools to breach 600+ FortiGate firewalls across 55 countries by exploiting weak passwords and exposed management interfaces.

ADVICE

Lock Down Edge Management And Enforce MFA

Do secure and restrict edge device management interfaces and avoid exposing them to the internet.
Implement robust MFA and enforce strong password policies because the FortiGate campaign succeeded via unprotected management interfaces and weak passwords.

ANECDOTE

Kiro Incident Deleted Prod And Cost Explorer Went Down

Amazon's Kiro AI assistant allegedly deleted and recreated a production environment, causing a 13-hour AWS Cost Explorer outage in one China mainland region.
Amazon later blamed a misconfigured role, but the incident reignited warnings against letting AI agents access prod.

Get the Snipd Podcast app to discover more snips from this episode

Get the app

AI-Accelerated FortiGate Breaches, Amazon Kiro Prod Disruption, Claude Code Security, Salt Typhoon Warning, and Youth Radicalization Risks

Episode of Cybersecurity Today (hosted by David Shipley) covering: a Russian-speaking hacker using AI-written automation tools to breach 600+ Fortinet FortiGate firewalls across 55 countries by exploiting weak passwords and exposed management interfaces without MFA, with advice to lock down edge management access, enforce MFA, and strengthen password policies; an Amazon Kiro AI coding tool incident tied to a misconfigured role that allegedly deleted and recreated a production environment, causing a 13-hour disruption to AWS Cost Explorer services in one of two mainland China regions, prompting warnings about giving AI agents access to production and the need for guardrails and review processes; Anthropic's Claude Code Security launch, an AI-driven code vulnerability analysis feature that maps code interactions and data flows, provides severity and confidence scoring, keeps humans in the loop, and sparked stock drops for CrowdStrike and Cloudflare while noting limits for legacy code; an FBI warning that China-linked Salt Typhoon remains a serious threat in 80+ countries by exploiting basic weaknesses like unpatched systems, old code, reused passwords, and phishing, alongside concern over the FCC loosening US telecom cybersecurity requirements and calls for stronger critical infrastructure regulation and secure-by-default equipment; and a Canada-focused segment on youth online radicalization including a second RCMP terrorism peace bond in New Brunswick linked to the 764 extremist network (designated a terrorist organization in December 2025), plus reporting that the Tumbr Ridge, BC school shooting suspect had a ChatGPT account suspended in June 2025 and that OpenAI employees allegedly sought to notify authorities but were rebuffed, drawing condemnation from BC Premier David Eby and federal AI minister Evan Solomon and renewed calls for stronger cooperation, accountability, and intervention frameworks.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale. You can find them at Meter.com/cst

00:00 Sponsor: Meter + Today's Cybersecurity Headlines 00:48 AI-Automated Hacking: 600+ FortiGate Firewalls Breached 02:25 How to Defend: Lock Down Edge Management, MFA, Strong Passwords 03:28 Amazon's Kiro AI Coding Tool Incident: 'Deleted Prod' and Lessons Learned 06:44 Claude Code Security: AI-Powered AppSec for Developers (and the Hype) 10:20 FBI Warning: Salt Typhoon Still Hitting Telecoms Worldwide 13:32 Youth Radicalization & AI Safety Failures: 764 Network and Tumblr Ridge Aftermath 18:12 Wrap-Up + Sponsor Message: Meter Demo Info