A working Windows Defender exploit sat exposed for 29 days before Microsoft patched it — and a ransomware crew just deleted 10TB from a university after stealing it. Today's briefing covers the patch lag crisis, the Mount Royal University breach, and why cyber insurers are now demanding proof, not promises.
Audio is available on Spreaker — see link below.
Microsoft's fix for a privilege escalation flaw in Windows Defender is now live. It arrived twenty-nine days after a working exploit went public.
The Mount Royal University breach tells a different kind of story, one about what happens after attackers are already inside. CMD Organization claimed responsibility.
There's a detail in MRU's response worth holding onto. The university offered two years of credit monitoring to employees.
The broader implication from MRU's situation extends well past one university. Nearly all ransomware attacks now include data exfiltration.
The third thread running through today's developments is insurance. Underwriters have moved well past the questionnaire model.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.