A Windows zero-day landed hours after Patch Tuesday closed, SonicWall appliances are under active CVSS 10.0 attack chains, and Russia's Sandworm is deploying malware through fake CAPTCHAs. Six stories from the past 24 hours — breaches, ransomware, and the disclosure friction that keeps defenders exposed.
Audio is available on Spreaker — see link below.
A Windows zero-day dropped hours after Microsoft's July patch cycle closed. Not before.
While the disclosure debate plays out, two zero-days with CVSS scores of ten point zero are already being actively exploited. That's the maximum severity rating, and in this case it's warranted.
Patch Tuesday itself landed with unusual weight this cycle. Six hundred and twenty-two vulnerabilities patched in a single release is a significant volume.
In Romania, the national land registry system was compromised on July fourteenth. The ANCPI e-Terra platform went down, stalling real estate transactions across the country.
Russia's Sandworm group has shifted tactics in a way worth paying attention to. The group, typically associated with sophisticated targeted operations, is now deploying malware through fake CAPTCHA prompts.
Two shorter developments worth tracking. Eleven malicious NuGet packages disguised as game cheats were found dropping Windows surveillance payloads, along with a remote access trojan called Starland RAT and a command-and-control implant called WLDR.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.