The January 2023 Fidelis Threat Intelligence Summary reviews major security developments and telemetry from the month, highlighting the end of support for Windows 7 and 8.1, active exploitation of FortiOS SSL-VPN CVE-2022-42475, an Experian authentication bypass that exposed consumer credit reports, and Russian threat activity including Turla reusing old ANDROMEDA infrastructure in Ukraine and COLDRIVER credential-phishing against U.S. national labs. It also notes attacker tradecraft where backdoors are planted using zero-days before patches, GitHub’s revocation of compromised code-signing certificates, and the U.S./European seizure of Hive ransomware infrastructure. The report lists top emerging vulnerabilities (including Zoho ManageEngine RCE CVE-2022-47966 and a Windows ALPC zero-day CV

Join for free to read