Executive Summary
Short summary: Multiple coordinated incidents and research reports in July 2026 show attackers exploiting software supply chains, agentic/AI contexts, living‑off‑the‑land techniques, in‑memory payloads and OT zero‑days to gain persistent, high‑privilege access. Defenders are responding with guidance on least‑privilege for AI agents, EDR/XDR detection, supply‑chain hygiene, and incident hunting/playbook updates. Key actionable mitigations include…