🦔 Blumira Briefings Ep. 11: Cloud ISE Cred Twinsies, Windows 0day Exploited, and Play Ransomware Updates

Show Notes

This week on Blumira Briefings, join our "Oops! All Detection Engineers" episode as Zoe hosts Jake and Justin to break down the most critical security headlines of the week with practical context you can actually use!

🔍 What We Cover This Week:

🌩️ Cisco ISE credential vulnerability affecting cloud deployments on AWS, Azure & Oracle (CVE-2025-20286) 

🔐 SAP NetWeaver critical missing authorization bug in RFC framework (CVE-2025-42989) 

📊 Our most changed security trends of the week - what's suddenly spiking across our detection data 

🪟 Windows WebDAV zero-day exploited against Turkish defense organization (CVE-2025-33053) 

🧩 Popular Chrome extensions leaking data through unencrypted HTTP connections 

🎭 Updated CISA guidance on Play Ransomware with new attack details

💡 Quick tip of the week: Validate your security controls by testing them regularly - have you tried restoring from your backups recently to confirm they actually work?

Plus, Expert Insights On: 

🔑 Why "randomly generated" credentials are just default credentials with extra steps 

☁️ How to protect cloud infrastructure from credential vulnerabilities 

⏱️ Why the time between vulnerability disclosure and broader exploitation keeps shrinking 

🔌 The security risks of browser extensions and VPN services 

🛡️ The importance of using phishing-resistant MFA with secure backup options

🔗 LINKS:

CVSS Base Score Metrics: https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator

Pyramid of Pain: https://www.attackiq.com/glossary/pyramid-of-pain/

🤫 SUPER EXTRA BONUS DEFENDER RESOURCE:

🐵 Monkey365 – PS Scanner for M365, Azure, and Entra: https://github.com/silverhack/monkey365