This pack covers ten intelligence items spanning three converging threat domains: identity and access control failures affecting both human and AI agent principals across cloud and enterprise environments; endpoint and delivery-chain abuse via living-off-the-land and AI-evasion techniques; and supply chain and data breach incidents with extortion characteristics. The highest-urgency cluster is the AI agent identity gap and cloud visibility failure, together they describe an environment where adversaries are operating faster than defenders can detect, and where the authorization model most organizations rely on is structurally misaligned with agentic workloads. Immediate attention is warranted for CVE-2026-39118 (macOS EDR/MDM disablement), the ClickOnce weaponization campaign, and the Tata Electronics supply chain breach.