Multiple High Profile Vulnerabilities Exploited! Webcam Redirection for Win365! iOS Zero-Day!

On this week’s episode I cover details of some fallout from this month’s Patch Tuesday, pricing for Office 365’s Copilot feature, a major Citrix ADC and Gateway vulnerability and much more!

This episode is brought to you in large part thanks to my sponsors:

Episode 292 is available on Soundcloud:

And on YouTube:

If you’d like to play the Podcast on a different podcast service such as Apple Podcasts, Google Podcasts or Spotify. You can find this episode at 5BytesPodcast.com

Here are this episode’s links as shown in the YouTube video:

Scripts, Tricks and Tips

Drivers Inventory dashboard on devices with Intune and Log Analytics :

https://www.systanddeploy.com/2023/07/drivers-inventory-dashboard-on-devices.html

AppFinder Tool:

https://github.com/kkaminsk/AppFinder

Create and manage background jobs and scheduled jobs in Windows PowerShell:

https://learn.microsoft.com/en-us/training/paths/create-manage-background-jobs-scheduled-windows-powershell/?WT.mc_id=modinfra-0000-orthomas

Windows PowerShell and Regular Expressions Course:

https://www.pluralsight.com/courses/powershell-regular-expressions?clickid=VuWyAV2I8xyPW6vSiK0Vt3rWUkFwBnWkbWIe3Q0&irgwc=1&mpid=2480670&aid=7010a000001xAKZAA2&utm_medium=digital_affiliate&utm_campaign=2480670&utm_source=impactradius

Citrix Vulnerability Exploited:

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-201a

Norwegian Government Hit by Cyber Gang:

https://therecord.media/norway-investigates-cyberattack-affecting-government-ministries

iOS Zero-Day:

https://www.bleepingcomputer.com/news/apple/apple-fixes-new-zero-day-used-in-attacks-against-iphones-macs/

Ivanti EPMM Actively Exploited Vulnerability:

https://www.bleepingcomputer.com/news/security/ivanti-patches-mobileiron-zero-day-bug-exploited-in-attacks/

CISA Warns of Adobe Coldfusion Vulnerabilities:

https://www.bleepingcomputer.com/news/security/cisa-warns-govt-agencies-to-patch-adobe-coldfusion-servers/

GCP Security Issue Addressed:

https://www.theregister.com/2023/07/24/infosec_in_brief/

Microsoft Certificate Mistake:

https://www.bleepingcomputer.com/news/microsoft/microsoft-sharepoint-outage-caused-by-use-of-wrong-tls-certificate/

Gartner’s Report on Java Licensing Change:

https://www.theregister.com/2023/07/24/oracle_java_license_terms/?utm_source=dlvr.it&utm_medium=twitter

Autopatch Reporting:

https://twitter.com/mauvlan/status/1683857298538758146?s=20

Webcam Redirection in Public Preview for Windows 365:

https://learn.microsoft.com/en-us/windows-365/enterprise/whats-new#windows-365-web-client-camera-support-preview

New ChatGPT Feature:

https://arstechnica.com/information-technology/2023/07/new-chatgpt-feature-remembers-custom-instructions-between-sessions/

Bitlocker Not Syncing Recovery Keys to AAD:

https://twitter.com/JHolloAtWork/status/1682110313007665153

Amazon Workspaces Application Manager Retiring Soon:

https://twitter.com/AMZNKevin/status/1683510790706597888

Galway United win All-Island Cup:

https://twitter.com/Rorymon/status/1683143602485035008

Full Podcast Episode Guide:
5bytespodcast.com

Check out my site:
Rorymon.com

Twitter:
@Rorymon