Taking Note of a Notepad++ Attack; Telnet and NTLM Are Still a Thing?

Описание: Everything old is new again in today's Packet Protector news roundup, as a decade-old Telnet exploit resurfaces, and Microsoft unfolds its roadmap to phase out the ancient NTLM protocol. In other news, Google takes down a sprawling residential proxy network, the popular Notepad++ app takes steps to recover from a serious compromise, and a Polish government agency shares lessons learned from a cyberattack against energy and manufacturing infrastructure.
Voice-based phishing (or vishing) attacks are targeting holders of Okta, Google, and Microsoft credentials, the Open Claw AI agent raises alarm bells among security researchers, and Moltbook vibe codes a gaping data leak.
Researchers warn of shadow AI running amok on corporate networks, threat researchers warn of a large-scale phishing campaign against government agencies in 37 countries, and the EU drafts a proposal to ban Chinese-made equipment from sensitive sectors.
Drew and JJ are skeptical of a survey that finds consumers will avoid a retailer after a breach, and Google Gemini is found to leak calendar data.

AdSpot Sponsor: Forward Networks
Enterprises rely on Forward Networks’ network digital twin for unified, trusted automation across distributed, hybrid networks. Forward Networks’ network digital twin ensures connectivity isn’t disrupted, security posture is unchanged, and compliance is maintained at all stages of change management. With Forward Networks’ digital twin, you can eliminate change-related outages—and subsequent headlines. Learn more about how to protect your network and your sanity with Forward Networks at https://www.forwardnetworks.com/packe...

Episode Links:
No Place Like Home Network: Disrupting the World's Largest Residential Proxy Network - https://cloud.google.com/blog/topics/...
The Kimwolf Botnet is Stalking Your Local Network - https://krebsonsecurity.com/2026/01/t...
Notepad++ Hijacked by State-Sponsored Hackers - https://notepad-plus-plus.org/news/hi...
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit - https://www.rapid7.com/blog/post/tr-c...
CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar Farms - https://thehackernews.com/2026/01/pol...
Microsoft to disable NTLM by default in future Windows releases - https://www.bleepingcomputer.com/news...
Phishing kits adapt to the script of callers - https://www.okta.com/blog/threat-inte...
Okta SSO accounts targeted in vishing-based data theft attacks - https://www.bleepingcomputer.com/news...
GNU InetUtils Security Advisory: remote authentication by-pass in telnet - https://lists.gnu.org/archive/html/bu...
Critical Telnet Server Flaw Exposes Forgotten Attack Surface - https://www.darkreading.com/ics-ot-se...
From magic to malware: How OpenClaw's agent skills become an attack surface - https://1password.com/blog/from-magic...
Hacking Moltbook: The AI Social Network Any Human Can Control - https://www.wiz.io/blog/exposed-moltb...
Shadow AI Threat Grows Inside Enterprises - https://www.blackfog.com/blackfog-res...
Cloud and Threat Report: 2026 - https://www.netskope.com/resources/cl...
Asian government’s espionage campaign breached critical infrastructure in 37 countries - https://www.cybersecuritydive.com/new...
EU plan to phase-out high-risk tech draws fire from China's Huawei - https://www.reuters.com/business/medi...
Consumers Reluctant to Shop at Stores That Don't Take Security Seriously - https://www.darkreading.com/cyber-ris...
Gemini AI assistant tricked into leaking Google Calendar data - https://www.bleepingcomputer.com/news...

Packet Protector is part of the Packet Pushers network. Visit our website to find more great networking and technology podcasts, along with tutorial videos, the Human Infrastructure newsletter, and loads more resources for building your IT career. https://packetpushers.net