Canary Trap’s Bi-Weekly Cyber Roundup

Canary Trap’s bi-weekly roundup highlights a series of active cyber incidents and systemic risks: critical infrastructure disruptions and historic ransomware activity in Newfoundland & Labrador, a security breach at Victoria’s Secret that delayed earnings reporting, a credential-stuffing attack impacting The North Face, pervasive weak-password practices across the auto industry, and coordinated open-source supply chain attacks in PyPI, npm, and RubyGems that include infostealers, crypto wallet theft, and destructive payloads — collectively underscoring rising supply-chain and credential-based threats and the urgent need for stronger controls.