This week’s roundup covers urgent federal patching proposals, new malware and espionage operations, and notable law enforcement actions across banking, transit, and technology sectors. It also highlights threats tied to Cisco firewalls, Microsoft Phone Link, North Korea-linked campaigns, and the Drone industry. #CloudZ #Pheno #OperationSilentRotor #ScarCruft #BirdCall #PamDOORa #Firestarter #CISA #Cisco #MicrosoftPhoneLink
Keypoints
- US officials want federal critical-vulnerability patching cut from 14 days to 72 hours.
- CloudZ and Pheno steal OTPs and SMS data through Microsoft Phone Link on Windows PCs.
- Operation Silent Rotor targeted the Eurasian drone industry with spear-phishing and data-stealing malware.
- ScarCruft compromised a gaming platform to deploy BirdCall and spy on users in Yanbian.
- Firestarter on Cisco firewalls may require a hard power cycle to fully remove.