Security vulnerabilities and cyberattacks continue to pose significant threats across various platforms, with issues ranging from hardware keyloggers and real-world exploits of software vulnerabilities to ransomware attacks targeting institutions like the Industrial and Commercial Bank of China's US offices. Notable incidents include an authentication bypass in Atlassian Confluence, an RCE in PRTG Network Monitor, and malicious typosquatting in the Python package repository. Responses to these disclosures vary, with some organizations promptly addressing the issues while others downplay their significance.

https://hackaday.com/2023/11/10/this-week-in-security-find-my-keylogger-zephyr-and-active-exploitation/