• Easily Exploitable Microsoft Visual Studio Bug Opens Developers to Takeover
• New MOVEit Transfer critical flaws found after security audit, patch now
• Ukrainian hackers take down service provider for Russian banks
• Microsoft Uncovers Banking AitM Phishing and BEC Attacks Targeting Financial Giants
• Update: BlackCat ransomware fails to extort Australian commercial law giant
• University of Manchester Announces Cyber Incident, Says Data ‘Likely’ Copied
• Replace Barracuda ESG appliances, company urges
• Royal ransomware gang adds BlackSuit encryptor to their arsenal
• Google Launches Framework to Secure Generative AI
• SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint
• New York City sues Hyundai, Kia claiming cars easy to steal
• Australian Capital Territory Government Falls Victim to Barracuda’s ESG Vulnerability
• Cisco Counterfeiter Pleads Guilty to $100m Scheme

Security researchers are warning about a bug in the Microsoft Visual Studio installer that gives cyberattackers a way to create and distribute malicious extensions to application developers, under the guise of being a legitimate software publisher.