ThreatsDay: Edge stores passwords in memory, critical 0‑days in ICS and new stealers

Colleagues, a major ThreatsDay bulletin has been released in cybersecurity.
- MicroStealer exfiltrates browser accounts, sessions and wallets; data sent via Discord.
- Microsoft Edge retains saved passwords in cleartext in memory — a risk with local access.
- Eclipse BaSyx suffers path traversal and SSRF, enabling RCE and PLC-targeted attacks.
- Fewer than 100 exposed MOVEit Automation instances; Oracle shifts to monthly CSPUs due to accelerating exploits.
Why this matters: faster discovery and exploitation require accelerated patching and privilege reduction.
How are you reprioritizing patching?
#cybersecurity #vulnerabilities #patching #infosec


Latest comments
No comments yet.