2nd December – Threat Intelligence Report

This weekly Threat Intelligence Bulletin details multiple active and impactful incidents: widespread ransomware attacks disrupting enterprises, hospitals and municipal services; a large theft from Uganda's central bank; active exploitation of critical vulnerabilities (including ProjectSend and WordPress plugin flaws); and sophisticated threat actor activity — notably GodLoader abusing the Godot Engine, Salt Typhoon's GhostSpider targeting telcos, and RomCom leveraging Firefox and Windows zero-days — alongside patch and protection guidance.