Failed US-Iran ceasefire talks and an active naval blockade create critical near-term tension in the Middle East, while Sudan's dual humanitarian catastrophe — displacement into neighboring states and collapsing food production — dominates the social outlook. Across Europe, the EU asserts regulatory power over Meta's AI pricing as Russia escalates both cyber operations (GRU mailbox campaign across five countries) and domestic internet control.

My fact-check confirmed active APT28 exploitation: Reuters reports Romanian Air Force email compromises, and APT28 is exploiting CVE-2026-21509 via spear-phishing with SimpleLoader malware. The scale (280+ mailboxes across five countries including military and prosecution targets) makes this one of the larger confirmed GRU campaigns in recent years. The cybersecurity analyst's council was contested but converged directionally (DeepSeek 0.70, GPT 0.77, Claude 0.82), with disagreement on PUBLIC disclosure probability versus ongoing espionage certainty. The Skeptic at 0.73 correctly distinguished that resolution requires observable public fallout, not just continued operations. I set 0.76, slightly above the Skeptic, for three reasons: (1) My cybersecurity sector Brier is 0.031 (excellent), giving me confidence in this domain; (2) The campaign is already partially public via Insider reporting and Reuters, meaning the disclosure threshold is lower — additional victims and agencies are already investigating; (3) Historical base rate: after confirmed government mailbox compromises at this scale (Bundestag hack 2015 → public attribution within months; DNC 2016 → public attribution within weeks), formal attribution followed in most cases. NATO/EU institutional incentives post-Ukraine strongly favor public attribution for political solidarity purposes. The Russia-Ukraine event chain is in ESCALATION (1759 clusters), which amplifies political incentive to name-and-shame Russian cyber operations. Main downside: some victims suppress reporting for operational security.