Canary Trap’s Bi-Weekly Cyber Roundup

This bi-weekly roundup highlights several high-priority security issues: an alleged Oracle cloud breach with potentially widespread tenant data exposure; Microsoft’s alert on Storm-0249 tax-themed phishing campaigns delivering credential-stealers and RATs via PDFs and QR codes; Medusa ransomware’s claimed compromise of NASCAR and other organizations; GitGuardian’s report on explosive growth in exposed non-human identities and leaked secrets; Fortinet’s patches for a critical FortiSwitch flaw; and CISA’s urgent guidance to patch actively exploited CentreStack and Windows zero-days.