Canary Trap’s Bi-Weekly Cyber Roundup

Canary Trap's bi-weekly roundup covers five notable items: a Golang-based backdoor leveraging Telegram for C2 with capabilities to execute PowerShell, restart as svchost, and self-delete; Palo Alto Networks confirming active exploitation of PAN-OS vulnerability CVE-2025-0108 with a public PoC and thousands of exposed management interfaces; X blocking Signal.me contact links; South Korea pausing downloads of DeepSeek AI apps over data-privacy concerns; and the OPP investigating a cybersecurity incident at the Kingston Police Service. Organizations are urged to apply PAN-OS patches, review external-facing management exposure, and follow incident response best practices.