Coffee Talk with SURGe: 2022-MAY-31 Follina MSDT zero day, ransomware roundup, supply chain risk
Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk broke down the Follina/MSDT zero day vulnerability (CVE-2022-30190), rounded up the latest ransomware activity, and discussed supply chain risk related to Python and PHP libraries.
Mick and Ryan competed in a 60 second charity challenge to explain LOLBins before taking a deep dive into the 2022 Verizon Data Breach Investigations Report.
Microsoft Blog on CVE-2022-30190:
REvil prosecution reportedly stalls in Russia:
Cl0p hits 21 victims in April:
Costa Rica suffers another cybersecurity incident:
Hacker claims hijacking libraries, stealing AWS keys was ethical research: