This month saw a complex, rapidly evolving situation involving multiple zero-days in Ivanti Connect Secure VPN appliances which are under active exploitation by multiple actors, the compromise of Microsoft and HP Enterprise by Russian state actors, and a spike in Akira ransomware activity targeting the Nordics, which impacted multiple significant Swedish entities.
The exploitation of appliances and network infrastructure was a hot topic this month. There were also multiple vulnerabilities in GitLab and GitHub, which are concerning due to the recent prevalence of CI/CD pipeline supply chain attacks.
We also report on several attacks by hacktivist groups that had significant impacts not normally achieved by such groups, as well as a series of security failures which lead to outages for Orange Spain.
Views: 0