ISC StormCast for Wednesday, June 1st, 2022
Follina Update
https://isc.sans.edu/forums/diary/First+Exploitation+of+Follina+Seen+in+the+Wild/28698/
https://isc.sans.edu/forums/diary/New+Microsoft+Office+Attack+Vector+via+msmsdt+Protocol+Scheme+CVE202230190/28694/
Open Automation Software Platform Vulnerability
https://blog.talosintelligence.com/2022/05/vuln-spotlight-open-automation-platform.html
Over 3.6 million MySQL servers found exposed on the Internet
https://www.bleepingcomputer.com/news/security/over-36-million-mysql-servers-found-exposed-on-the-internet/
Ryan Pisarik joins Kroll as Managing Director, Forensic Investigations and Intelligence
Ryan Pisarik has joined Kroll as a Managing Director in the Forensic Investigations and Intelligence practice, to help strengthen investigation, intelligence, technology-driven analytics and risk advisory services.
BD Synapsys
This advisory contains mitigations for an Insufficient Session Expiration vulnerability in the BD Synapsys microbiology informatics software platform.
The value of cyber insurance for small businesses
Cyber insurance won’t stop a data breach, but it will protect small businesses from the high costs of a security breach or cyberattack.
4 emerging threats in the domain name landscape
There are four notable emerging cybersecurity threats in the domain name space organizations need to be aware of for improved brand protection.
ISC StormCast for Tuesday, May 31st, 2022
New Microsoft Office Attack Vector via “ms-msdt” Protocol Scheme
https://isc.sans.edu/forums/diary/New+Microsoft+Office+Attack+Vector+via+msmsdt+Protocol+Scheme/28694/
FBI: 61 active shooter incidents occurred in 2021
In 2021, the U.S. Federal Bureau of Investigation (FBI) designated 61 shootings as active shooter incidents.
Are you prepared for the 2022 hurricane season?
Hurricane season 2022 is almost here, and security leaders throughout the U.S. must review their emergency plans to ensure employee safety and business resilience.
