Risky Business #800 — The SharePoint bug may have leaked from Microsoft MAPP

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

• Did the SharePoint bug leak out of the Microsoft MAPP program?
• Expel retracts its FIDO bypass writeup
• The mess surrounding the women-only dating-safety app Tea gets worse
• Broadcom customers struggle to get patches for VMWare hypervisor escapes
• Aeroflot gets hacked by the Cyber Partisans, disrupting flights

This week’s episode is sponsored by Push Security. Daniel Cuthbert joins and explains how having telemetry about identity from inside the browser is a key pillar for investigating intrusions in the browser-centric future.

This episode is also available on Youtube.

Show notes

• Microsoft Probing Whether Cyber Alert Tipped Off Chinese Hackers
• Microsoft says Warlock ransomware deployed in SharePoint attacks as governments scramble | The Record from Recorded Future News
• What we know about the Microsoft SharePoint attacks | Cybersecurity Dive
• An important update (and apology) on our PoisonSeed blog
• Tea User Files Class Action After Women’s Safety App Exposes Data
• A Second Tea Breach Reveals Users’ DMs About Abortions and Cheating
• Top Lawyer for National Security Agency Is Fired
• From Help Desk to Hypervisor: Defending Your VMware vSphere Estate from UNC3944
• VMware prevents some perpetual license holders from downloading patches
• Pro-Ukrainian hackers take credit for attack that snarls Russian flight travel - Ars Technica
• КИБЕРУДАР ПО АЭРОФЛОТУ РФ!v
• Treasury sanctions North Koreans involved in IT-worker schemes | Cybersecurity Dive
• Minnesota governor activates National Guard amid St. Paul cyberattack | StateScoop
• Outage was result of cyberattack, Post Luxembourg says
• Clorox files $380 million suit blaming Cognizant for 2023 cyberattack | Cybersecurity Dive
• Cisco network access security platform vulnerabilities under active exploitation | CyberScoop
• Arizona woman sentenced to 8.5 years for running North Korean laptop farm | The Record from Recorded Future News
• Cybercrime forum Leak Zone publicly exposed its users' IP addresses | TechCrunch