Now Playing
Azure Cloud Vulns Surge 16%, Cisco SD-WAN Zero-Day & Silent Ransom Goes Physical
Audio is available on Spreaker — see link below.
Critical Azure and Entra ID vulnerabilities surge 16% as attackers pivot to cloud identity infrastructure — while a Cisco SD-WAN zero-day with no patch is being actively exploited in the wild. Plus: Silent Ransom Group impersonates IT workers in offices, a SharePoint RCE patch drops, and India's CBSE portal survives a coordinated DDoS.
Audio is available on Spreaker — see link below.
Critical vulnerabilities in Microsoft's cloud infrastructure rose sixteen percent this year. That's the lead.
There's an active zero-day in Cisco Catalyst SD-WAN Manager that security teams need on their radar today. CVE-2026-20245 is a privilege escalation flaw being exploited in the wild.
The FBI and Google issued a joint alert this week on a tactic that moves this threat group into different territory. Silent Ransom Group is sending people into offices.
Microsoft released an out-of-band patch this week for CVE-2026-45659, a remote code execution flaw in Windows SharePoint Server carrying a CVSS score of eight point eight. No known exploitation yet.
India's Central Board of Secondary Education portal was hit with a coordinated distributed denial-of-service campaign between June second and fifth, timed immediately after results were published. Massive malicious traffic from multiple IP ranges.
The through-line across today's briefing is straightforward. CVE counts are going down.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.