Supplemental Cyber Highlights – June 20, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

• Microsoft resolves ‘dangerous’ new Azure vulnerabilities – The Record
• FAQ for MOVEit Transfer Vulnerabilities and CL0P Ransomware Gang – Tenable
• The Importance of an Incident Response Retainer (IRR) – 1898 & Co (WaterISAC Champion)
• Why assessing third parties for security risk is still an unsolved problem – CSO Online
• SBOM Security: Fundamentals and Best Practices – Tripwire
• How to Protect Against the Four Largest Cybersecurity Threats to Your Supply Chain – Tripwire
• The Real Value-Add of Red Teaming – Tripwire
• Russian National Arrested in Connection With LockBit Ransomware – InfoSecurity Magazine