Now Playing
208 CVEs, Qilin Hits Telecom & GentleKiller EDR Bypass
Audio is available on Spreaker — see link below.
Microsoft's 208-CVE Patch Tuesday introduced a Recycle Bin regression hitting millions of Windows systems, while Qilin ransomware claimed Q Link Wireless and the GentleKiller EDR bypass toolkit went public. Today's briefing also covers Teams-based C2 attacks and tightening regulations under DORA and CIRCIA.
Audio is available on Spreaker — see link below.
Microsoft shipped fixes for two hundred and eight vulnerabilities this week. That number sounds like progress.
On June sixteenth, the Qilin ransomware group publicly claimed responsibility for breaching Q Link Wireless, a major U.S. telecom provider. The claim itself matters, but the target matters more.
A May twenty twenty-six internal data leak confirmed what threat researchers had suspected. GentleKiller isn't a one-off tool.
Between June fourteenth and twentieth, a ransomware group used Microsoft Teams relay infrastructure to conceal command-and-control communications via a custom backdoor. The technique works because Teams traffic blends with legitimate enterprise network activity.
Two regulatory developments landed this week that will shape how organizations handle incidents going forward. In the EU, financial regulators published their first annual ICT incident overview on June third under the DORA framework.
The two signals worth tracking closely from here are the Patch Tuesday regression and GentleKiller's affiliate exposure. Microsoft's rollback guidance, when it arrives, will tell you how seriously they're treating the operational impact.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.