Week 50 of 2024

In this week's Threat Intelligence Briefing

• Advisory: CISA Shares Tips to Defend against Salt Typhoon, Group behind recent Telecom Breaches
• CVE-2024-11639: Ivanti Warns of Maximum Severity CSA Auth Bypass Vulnerability
• Advisory: Microsoft December 2024 Patch Tuesday Fixes 1 Exploited Zero-Day, 71 Flaws
• CVE-2024-50623: New Cleo Zero-Day RCE Flaw Exploited in Data Theft Attacks

Brought to you by Joey Vandegrift and Brad Causey, CISSP at SecurIT360

A CISO's Perspective with Mike Whitt

Unmasking the Manipulators: Identifying and Avoiding Social Engineering Tactics