Security researchers are currently seeing CVE-2022-22718 being exploited in the wild. This CVE was patched by Microsoft as apart of Patch Tuesday updates on February 8, 2022. However, some organizations delay patches or do not keep up with patch management. CISA is warning organizations that attackers are abusing this vulnerability.
Link: https://thehackernews.com/2022/04/hackers-exploiting-recently-reported.html
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks Article Link: https://thehackernews.com/2026/03/china-linked-red-menshen-uses-stealthy.html FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber
CISA Urges US Orgs to Secure Microsoft Intune Systems After Stryker Breach Article Link: https://www.bleepingcomputer.com/news/security/cisa-warns-businesses-to-secure-microsoft-intune-systems-after-stryker-breach/ The Industrialization of Identity Compromise: How Attackers Are Scaling Faster
