Cybersecurity Daily: News & Threats
(00:00:00) SharePoint Zero-Day, FortiBleed Pivot & 500M WordPress RCE (00:00:46) SharePoint IIS Key Persistence Chain (00:01:27) FortiBleed into FortiSandbox RCE (00:02:27) WordPress wp2shell 500M Sites (00:03:00) Gold Eagle Federal Scam Wave (00:03:39) AI Discovery and the Patch Capacity Problem This episode covers four major threat threads converging in a single patch cycle—and why patching alone may not be enough to close any of them. Microsoft's July Patch Tuesday set a new record at 570 vulnerabilities, including two confirmed zero-days: a privilege escalation flaw in Active Directory Federation Services (CVE-2026-56155) and an unauthenticated remote code execution bug in SharePoint Server (CVE-2026-56164). A separate SharePoint deserialization flaw scored CVSS 9.8 and has been chained with three other CVEs in active attacks. The chain includes IIS machine key theft—a persistence mechanism that survives patching if keys aren't rotated and logs aren't audited before remediation. The FortiBleed campaign, running since February, has placed over 86,000 stolen FortiGate credentials into circulation. This week those credentials became the entry point for two newly confirmed FortiSandbox vulnerabilities (CVE-2026-39808 and CVE-2026-39813), enabling unauthenticated root access to the verdict engine itself. CISA's federal remediation deadline is July 19. WordPress issued a rare emergency forced auto-update for CVE-2026-63030, a critical unauthenticated RCE flaw affecting versions 6.9 and 7.0—roughly 500 million sites. Public scanners are already active. A separate social engineering wave is cloning federal portals and using deepfake calls impersonating Treasury and CISA officials to harvest credentials from financial-sector IT staff. Underpinning all of this: Microsoft's MDASH AI tool is accelerating CVE discovery faster than enterprise patch cycles were ever designed to absorb. The bottleneck has moved from finding vulnerabilities to fixing them at scale. This episode includes AI-generated content.
71 episodes
Comments
0Be the first to comment
Sign up now and become a member of the Cybersecurity Daily: News & Threats community!