A critical vulnerability tracked as CVE-2025-22457 is actively being exploited by China-linked threat actors, putting over 5,000 Ivanti Connect Secure VPN instances at risk.

Canary Trap

18.04.2025

Canary Trap’s Bi-Weekly Cyber Roundup - Canary Trap

In this week’s cybersecurity roundup, we cover a series of critical developments impacting cloud infrastructure, enterprise networks, and user safety. Highlights include Oracle’s confirmation of a cloud breach, a new Microsoft alert on tax-themed malware campaigns, and Medusa ransomware's claim of a high-profile attack on NASCAR. We also examine the rising security risks posed by non-human identities, a critical FortiSwitch vulnerability patched by Fortinet, and urgent guidance from CISA on actively exploited zero-day flaws in CentreStack and Windows.

Canary Trap

22.04.2025

FBI Cybersecurity Warnings - Canary Trap

Ransomware attacks are on the rise, with threat actors like Clop, FunkSec, and Medusa leading a surge in cyber extortion campaigns. February 2025 saw a dramatic spike in victim disclosures, with Clop alone accounting for 35% of all names listed on data-leak sites. This resurgence follows the disruption of several ransomware gangs in late 2024, creating a vacuum that newer or reemerging groups have quickly filled.

Canary Trap

29.04.2025

Malware Surge via Proton66 - Canary Trap

Hackers are abusing the infrastructure of Russian bulletproof hosting provider Proton66 to launch global cyberattacks, including mass scanning, credential brute-forcing, and exploitation attempts. Trustwave SpiderLabs identified this surge in activity beginning in January 2025, noting that previously inactive IP addresses were involved in malicious activity.

home›Canary Trap

Canary Trap

Software

Ivanti VPNs at Risk - Canary Trap

Canary Trap’s Bi-Weekly Cyber Roundup - Canary Trap

FBI Cybersecurity Warnings - Canary Trap

Malware Surge via Proton66 - Canary Trap

home
›
Canary Trap