5th January – Threat Intelligence Report

**Executive summary:** This bulletin outlines multiple high-impact incidents and disclosures: several ransomware attacks and vendor-mediated data breaches (including Cl0p and TridentLocker claims), supply-chain compromises of browser extensions and software installers resulting in credential and crypto theft, widespread malicious browser-extension campaigns and botnet expansion (Kimwolf), and critical vulnerabilities (including IBM API Connect auth bypass and Bluetooth device takeovers) with associated patches and mitigations.