Recorded Future’s Insikt Group May 2026 analysis documents 41 high-impact CVEs representing an 11% month-over-month increase, with AI-accelerated discovery and compressed exploitation windows creating a structural acceleration in vulnerability-to-exploitation timelines. Named threat actors include Storm-1175, ShinyHunters, Nimbus Manticore, Kali365 operators, Showboat, and Eagle Werewolf, spanning criminal, hacktivist-adjacent, and state-aligned categories. Legacy unpatched systems are confirmed active campaign targets.