Monthly Threat Advisory - September 2022
• Oktapus Phishing - a recent spike in Smishing
• New GoLang malware campaign, GO#WEBBFUSCATOR, decoys targets in viewing images that are loaded with a GoLang Malware.
• Microsoft Teams store Unencrypted Authentication Tokens
• Critical Zero-day Sophos Firewall Remote Code execution vulnerability, CVE-2022-3236, has been patched
• Malicious OAuth Applications