Microsoft exploited vulnerability

The US government Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft Office/Windows HTML vulnerability to its Known Exploited Vulnerabilities Catalog. CISA Adds One Known Exploited Vulnerability to Catalog | CISA And from Microsoft: Storm-0978 attacks reveal financial and espionage motives | Microsoft Security Blog

MOVEit updates

The flaw in the MOVEit file transfer software has caused a series of major cyber security breaches around the world – now there are patches for further issues: Progress Software Releases Service Pack for MOVEit Transfer Vulnerabilities | CISA You may not use MOVEit, but your takeaway from this is …