State-Backed Hackers Weaponize AI, Conduent Breach Hits 25 Million, and Apple Patches Surveillance Zero-Day

In the past few years, cybersecurity professionals have warned that artificial intelligence would fundamentally change the threat landscape. On February 12, 2026, that prediction is no longer theoretical. Google's Threat Intelligence Group published findings confirming that state-backed hacking groups from North Korea, China, Iran, and Russia are actively weaponizing generative AI to accelerate reconnaissance, refine phishing campaigns, and even build novel malware frameworks. Meanwhile, the Conduent data breach — already one of the largest in U.S. history — continues to expand, now affecting over 25 million Americans. And Apple patched a surveillance-grade zero-day that chains together exploits across multiple system layers.

For CISOs, IT directors, and security teams, today's briefing highlights your critical role in staying ahead of adversaries evolving faster than defenses.

Nation-State Hackers Are Weaponizing Generative AI — and It Is Working

Google's Threat Intelligence Group (GTIG) released a report today detailing how advanced persistent threat (APT) groups linked to four nation-states are using Google's Gemini AI model to enhance their cyber operations. This is not a hypothetical risk assessment — it is documented, observed activity.

North Korea's UNC2970: AI-Enhanced Social Engineering at Scale

The most striking case involves UNC2970, a North Korean threat group that overlaps with the clusters known as Lazarus Group, Diamond Sleet, and Hidden Cobra. UNC2970 is best known for Operation Dream Job, a long-running campaign targeting the aerospace, defense, and energy sectors by recruiting victims through fake job offers.

According to GTIG, UNC2970 used Gemini to synthesize open-source intelligence and profile high-value targets at cybersecurity and defense companies, including researching technical roles and salary data to make their phishing lures more convincing. GTIG noted that this activity "blurs the distinction between routine professional research and malicious reconnaissance."

The implications are significant: AI now dramatically reduces the time and effort required to craft credible social engineering attacks, making traditional defenses less effective and requiring immediate technical and procedural updates.

Beyond Reconnaissance: AI-Generated Malware Frameworks

The GTIG report goes further than reconnaissance. Researchers described a downloader and launcher framework tracked as HONESTCUE, which uses Gemini's API to receive C# source code for second-stage actions. The secondary stage compiles and executes code in memory without writing the payload to disk, complicating both network-based detection and static analysis.

GTIG also identified COINBAIT, a phishing kit likely accelerated by AI code generation tools. The kit masquerades as a major cryptocurrency exchange for credential harvesting and was built using the AI-powered development platform Lovable AI.

The Model Extraction Threat

Beyond operational misuse, Google DeepMind and GTIG identified an increase in attempts to extract models — distillation attacks designed to steal intellectual property from AI models. One campaign targeting Gemini's reasoning capabilities involved over 100,000 prompts engineered to coerce the model into outputting its full reasoning processes.

What This Means for Enterprise Security Teams

1. Social engineering defenses must account for AI-augmented attacks. Traditional security awareness training that teaches employees to spot poorly written phishing emails is increasingly insufficient. AI-generated lures are grammatically flawless and contextually accurate. Organizations should implement technical controls — email authentication (DMARC/DKIM/SPF), link sandboxing, and behavioral anomaly detection on communication platforms — rather than relying primarily on human vigilance.
2. Monitor for AI API abuse in your environment if your organization uses generative AI platforms, and audit API access patterns for anomalous behavior. The HONESTCUE framework demonstrates that AI APIs can serve as a command-and-control infrastructure.
3. Threat models must incorporate AI-accelerated timelines. GTIG's assessment that Gemini allows threat actors to "move from initial reconnaissance to active targeting at a faster pace and broader scale" should inform your incident response planning and tabletop exercises.

Conduent Breach Balloons to 25 Million: A Healthcare Data Disaster Still Unfolding

The Conduent data breach, first disclosed in early 2025, has expanded dramatically. What was initially reported as affecting approximately 4 million people now impacts over 25.9 million Americans, making it the eighth-largest healthcare data breach in U.S. history. The Texas Attorney General has launched an investigation, and at least 10 federal class-action lawsuits have been consolidated in the U.S. District Court for the District of New Jersey.

The Scale of Exposure

The SafePay ransomware group claimed responsibility for the attack, which resulted in the theft of approximately 8.5 terabytes of sensitive data. Unauthorized access occurred between October 21, 2024, and January 13, 2025. In Texas alone, more than 15.4 million individuals were affected — roughly half the state's population. Oregon reported another 10.5 million affected residents.

The exposed data includes names, dates of birth, Social Security numbers, medical service information (including diagnoses and treatment codes), provider names, dates of service, claims data, and health insurance details. Affected organizations include Blue Cross Blue Shield of Texas, Blue Cross Blue Shield of Montana, Premera Blue Cross, and Humana.

Why This Breach Keeps Growing

Conduent is a government technology services provider that supports approximately 100 million U.S. residents across various government health programs. The breadth of their data processing relationships means that each new state investigation or disclosure requirement reveals additional affected populations. Conduent reported $25 million in direct breach response costs in its May 2025 earnings report, a figure that will almost certainly increase as litigation proceeds and the free credit monitoring deadline of March 31, 2026, approaches.

Lessons for IT Leaders

The Conduent breach illustrates several patterns that should inform every organization's risk management strategy:

• Third-party risk is your risk. The affected individuals were not Conduent's direct customers — they were beneficiaries of government health programs processed by Conduent on behalf of insurers. If your organization shares sensitive data with third-party processors, you inherit their security posture. Vendor risk assessments, contractual security requirements, and regular audits are non-negotiable.
• Breach scope expands over time. Initial breach disclosures almost always understate the true impact. Your incident response planning should account for this pattern — both in your own breach scenarios and in evaluating vendor disclosures.
• Dwell time remains dangerously long. The unauthorized access window — October 2024 through January 2025 — represents nearly three months of adversary presence. Reducing mean time to detection (MTTD) through continuous monitoring, network segmentation, and anomaly detection remains a critical priority.

Apple Patches Surveillance-Grade Zero-Day (CVE-2026-20700)

Apple released patches today for CVE-2026-20700, a memory corruption vulnerability in dyld, the Dynamic Link Editor responsible for loading libraries into memory on Apple devices. Apple acknowledged the flaw "may have been exploited in an extremely sophisticated attack against specific targeted individuals."

Why This Matters Beyond Targeted Attacks

The discovery is credited to Google's Threat Analysis Group (TAG), the team known for tracking government-backed hacking and commercial spyware vendors. The attack chain linked CVE-2026-20700 with two WebKit zero-days patched in December 2025 (CVE-2025-14174 and CVE-2025-43529), suggesting a multi-stage exploit that first achieves browser-level access, then escalates to full system compromise via the dyld flaw.

While Apple describes the attacks as "targeted," history teaches us that sophisticated exploit chains eventually trickle down. What begins as a nation-state tool today becomes a commodity exploit kit within months.

Patches Available

Updates are available in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, watchOS 26.3, and visionOS 26.3. Apple also released patches for older platforms: iOS 18.7.5, iPadOS 18.7.5, macOS Sequoia 15.7.4, and macOS Sonoma 14.8.4.

Action item: Push Apple device updates through your MDM solution immediately. If your organization manages a fleet of Apple devices, this is a same-day priority, not a next-cycle item.

The Bigger Picture: Three Trends Converging in 2026

Today's threat landscape illustrates three trends that CISOs and IT directors must internalize.

AI Is an Adversary Force Multiplier — Not Just a Defender's Tool

The security industry has invested heavily in AI-powered defense tools, and rightfully so. But the GTIG report makes clear that adversaries are adopting AI at least as quickly. The asymmetry is concerning: defenders must protect every surface, while attackers only need one entry point. AI dramatically reduces the attacker's cost for reconnaissance, social engineering, and even malware development. Security strategies that assume a human-paced adversary are already outdated.

Healthcare and Government Data Remain Prime Targets

The Conduent breach is not an isolated incident. Ransomware groups continue to prioritize organizations that process healthcare and government data because the data is both highly sensitive and highly valuable. The combination of regulatory pressure (HIPAA, state breach notification laws) and the sheer volume of personal information creates a target-rich environment. Organizations in these sectors should treat data minimization — collecting and retaining only what is strictly necessary — as a core security control, not just a compliance checkbox.

Exploit Chains Are Getting More Sophisticated

The Apple zero-day chain — browser exploit to system-level compromise — reflects a broader trend toward multi-stage attacks that evade single-layer defenses. Defense-in-depth is not a new concept, but its importance is growing as attackers chain together vulnerabilities across different system components. Endpoint detection and response (EDR), network segmentation, application sandboxing, and aggressive patching all play distinct roles in breaking these chains.

A Framework for Today's Response

If you are reading this as a CISO or IT director, here is a prioritized action framework:

1. Apple Devices (High — Same Day): Push iOS 26.3 / macOS Tahoe 26.3 updates via MDM. Prioritize executive and high-value-target devices given the surveillance nature of the exploit.
2. AI Threat Posture (High — This Week): Brief your security operations team on the GTIG findings. Audit AI API usage in your environment. Update phishing simulations to reflect AI-augmented social engineering tactics.
3. Third-Party Risk Review (Medium — This Month): If your organization shares sensitive data with third-party processors, use the Conduent breach as a catalyst to review vendor security assessments, contractual obligations, and incident notification procedures.
4. Detection Posture (Ongoing): Ensure behavioral monitoring covers endpoint, network, email, and identity layers. Static IOC-based detection alone is insufficient against AI-accelerated and multi-stage attacks.
5. Stakeholder Communication: Brief executive leadership on the AI weaponization findings — this is a risk narrative that resonates with non-technical leaders and may support budget conversations for advanced detection capabilities.

When the Threat Landscape Moves This Fast, Expertise Matters

Days like today are a reminder that cybersecurity is not a set-it-and-forget-it discipline. The convergence of AI-powered adversaries, expanding mega-breaches, and sophisticated exploit chains demands continuous vigilance and adaptive defense strategies.

Sources

• Google GTIG: State-Backed Hackers Using Gemini AI for Recon and Attack Support
• Infosecurity Magazine: Nation-State Hackers Embrace Gemini AI for Malicious Campaigns
• The Record: Nation-State Hackers Ramping Up Use of Gemini
• Google: AI Model Theft & State-Backed Misuse Warning
• TechCrunch: Data Breach at Govtech Giant Conduent Balloons to Millions More Americans
• HIPAA Journal: Conduent Business Services Data Breach Victim Count Swells to Over 25M
• Texas Attorney General: Investigation into Conduent Data Breach
• IDStrong: Conduent Data Breach 2025-2026 — 25 Million Affected
• Help Net Security: Apple Fixes Zero-Day (CVE-2026-20700)
• SecurityWeek: Apple Patches iOS Zero-Day Exploited in Extremely Sophisticated Attack
• Malwarebytes: Apple Patches Zero-Day Flaw