Canary Trap’s Bi-Weekly Cyber Roundup

Canary Trap's bi-weekly roundup details several active and high-impact security incidents: a Chinese espionage operation ('Salt Typhoon') that breached nine U.S. telecom companies and accessed unclassified communications and metadata; a 765,517-user data leak from Senior Dating due to an unsecured Firebase database; a newly disclosed 'DoubleClickjacking' technique that circumvents X-Frame-Options and SameSite protections to enable account takeovers; and a large OAuth-phishing campaign that hijacked 35 Chrome extensions to inject infostealer code affecting roughly 2.6 million users.