18th November – Threat Intelligence Report

This weekly Threat Intelligence Bulletin highlights a broad set of active threats: a confirmed Chinese APT (Salt Typhoon) campaign compromising US telecom infrastructure and intercepting communications; multiple ransomware incidents claiming data theft (INC, Embargo) and municipal/system outages; a disruptive DDoS against Israeli payment readers; critical zero-day vulnerabilities in Microsoft and Palo Alto products being exploited in the wild; and increased infostealer/malware activity (AgentTesla, Lumma, WezRAT) with associated advisories and mitigations.