

URGENT! Microsoft Exchange double zero-day – “like ProxyShell, only different” (Naked Security) Warning: New attack campaign utilized a new 0-day RCE vulnerability on Microsoft Exchange Server (GTSC) Microsoft Releases Guidance on Zero-Day Vulnerabilities in Microsoft Exchange Server (CISA)Ĭustomer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server (Microsoft Security Response Center)

How’s your off-boarding program working out?įor links to all of today's stories check out our CyberWire daily news briefing: Our guest Rachel Tobac from SocialProof Security brings a musical approach to security awareness training.

Betsy Carmelite from Booz Allen Hamilton talks about addressing the cyber workforce skills gap. Flying under partial mobilization’s radar. The Mexican government falls victim to apparent hacktivism. There’s new Lazarus activity: bring-your-own-vulnerable-driver. A supply chain attack, possibly from Chinese intelligence services. Two Microsoft Exchange zero-days exploited in the wild.
