A researcher dropped an unpatched Windows zero-day hours after Patch Tuesday, three SharePoint RCE flaws are already being actively exploited, and Sysdig documented the first fully autonomous AI-driven ransomware with no ransom demand. Today's briefing covers the threats your patching schedule won't save you from.
Audio is available on Spreaker — see link below.
A researcher just dropped an unpatched Windows zero-day hours after Microsoft's July Patch Tuesday. That's the signal this briefing opens on, because it tells us something larger: patching on schedule is no longer enough.
While LegacyHive sits unpatched, three SharePoint Server flaws are already being actively exploited. CISA confirmed all three, covering remote code execution and data theft across on-premises deployments.
Separate from the zero-day situation, this Patch Tuesday brought a significant volume of critical enterprise fixes. Adobe dropped eighty-eight total patches.
There's a different category of threat that also landed this week. Sysdig documented what appears to be the first fully autonomous AI-driven ransomware operation.
On the economics of ransomware, a parliamentary report on Bermuda's September twenty twenty-three government attack has added a rare data point. The report indicates ransom payment activity totalling approximately four-point-four million dollars.
One more story worth tracking: Fairlife has halted US dairy production following unauthorized system access. It's the first major US food and beverage supply chain disruption of twenty twenty-six.
The two things to watch closely from here: whether LegacyHive gets fully weaponized before Microsoft ships a patch, and whether the autonomous AI ransomware documented by Sysdig reappears with a payment mechanism attached. The first tells us how badly coordinated disclosure has broken down.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.