This article describes a trend where threat actors are evading detection by targeting edge infrastructure and proxy networks for initial access and persistence, while using GenAI to accelerate tool development. The report highlights the need for proactive threat intelligence to identify adversaries earlier in the attack chain. Specific technical details regarding CVSS scores, affected versions, or patches are not provided in the source material.
Attack activity is moving toward infrastructure outside endpoint visibility. Proxy networks support a wide range of operations, edge devices serve as initial access points, and GenAI speeds up how attackers assemble and rebuild their tooling. Lumen’s 2026 Threatscape Report describes this pattern in criminal and nation-state activity. “Threat intelligence is needed to find the adversary as early as possible and as close to the point of origination as possible,” said Chris Kissel, IDC VP, Security … More → The post Cybercriminals move deeper into networks, hiding in edge infrastructure appeared first on Help Net Security .