ScanForge Security Digest 2617-02
This week presented a favorable threat landscape with no actively exploited vulnerabilities or critical CVEs reported, though elevated activity levels warrant attention. Key concerns include a new BlackFile extortion group orchestrating vishing campaigns, a critical Linux privilege escalation flaw (Pack2TheRoot), and a sophisticated FIRESTARTER backdoor targeting Cisco Firepower devices that persists through patching. Organizations should prioritize deploying available patches for the Pack2TheRoot vulnerability and implementing enhanced email and voice authentication controls to counter the vishing threat. Microsoft's upcoming passkey support in Windows offers a strategic opportunity to strengthen credential security across enterprise environments. Continue monitoring for indicators of compromise related to FIRESTARTER and maintain heightened vigilance around social engineering vectors targeting your user base.
Security News
10A new financially motivated hacking group tracked as BlackFile has been linked to a wave of data theft and extortion att
Microsoft will roll out passkey support for phishing-resistant passwordless authentication to Microsoft Entra‑protected
A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to instal
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has revealed that an unnamed federal civilian agency's
Some 29 people were charged, including a Cambodian senator, and authorities seized more than 500 Web domains tied to fak
Forgotten integrations, shadow IT, SaaS, and now shadow AI and agents are everywhere, and attackers don't need sophistic
It targeted high-precision calculation software to tamper with results and packed a self-propagation mechanism. The post
Other noteworthy stories that might have slipped under the radar: Supreme Court hacker sentenced, Lovable exposed user d