Action Recommended: Check if your On-Prem or Hybrid Microsoft Exchange Server is Still Vulnerable to ProxyNotShell and/or OWASSRF Exploitation

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 2, 2023

TLP:AMBER Weekly Flashpoint Intelligence Reports: February 2, 2023

FBI PIN – Novel Version of SHARPEXT Malicious Browser Extension Attributed to North Korea

Ransomware Resilience – Proactive Defense Against Ransomware is to Protect Against Behaviors, not Indicators

Security Awareness – How to Shift Employee Thinking to Become Security-Focused

Supply Chain Risk – Study: 98 Percent of Organizations Hire At Least One Third Party That’s Recently Suffered a Data Breach

(Update February 9, 2023) Widespread ESXiArgs Ransomware Attacks Continue Against Unprotected VMware ESXi Servers

Security Awareness – Safer Internet Day 2023: How to Manage Your Data and Privacy Online

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 7, 2023

Cyber Resilience – MITRE Releases Tool to Help Design Cyber-Resilient Systems

Threat Awareness – New ISAC Report Finds Increase in DDoS Attacks Targeting the Financial Services Industry