This week’s roundup covers major cybersecurity incidents, including the Trump Mobile data exposure, deep Russian state-sponsored access to Treasury emails tied to SolarWinds, a VS Code Remote-SSH RCE flaw, and large-scale phishing and supply chain attacks. It also highlights urgent patches from Veeam, Notepad++, and Roundcube, along with CISA’s response to recent attacks and the sentencing of a contractor who hacked a former employer. #TrumpMobile #SolarWinds #VSCode #AdobeTarget #FIFA #Veeam #Notepad++ #Roundcube #CISA #NxConsole #DaemonToolsLite #TanStack #NPM #MaxwellSchultz
Keypoints
- Trump Mobile confirmed a data exposure involving customer personal information.
- Russian state-backed hackers had deep access to Treasury email accounts after the SolarWinds attack.
- A VS Code Remote-SSH flaw could let attackers pivot to remote systems with code execution.
- Phishers abused Adobe Target in a LinkedIn-themed campaign to steal credentials.
- CISA added supply chain attack vulnerabilities to its KEV catalog and urged remediation.