nixCraft 🐧Microsoft Teams is experiencing issues, with thousands reporting problems sending messages, including delays 🤣
Gary Blosser
@zombie042@infosec.exchange
- 17 Followers
- 137 Following
- 400 Posts
Just another security guy/experimental chef quietly watching the news and occasionally releasing tools, recipes, and thoughts.
BleepingComputerMicrosoft Teams is experiencing issues, with thousands reporting problems sending messages, including delays.
Hmmm...getting almost 1 minute lag on teams posts. The perfect tool to die on a Friday (or any day really 😅)
The NeedlingNation Just Kinda Assumed Pacific Northwest Always Lived in Giant Puddle Like That: https://theneedling.com/2025/11/12/nation-just-kinda-assumed-pacific-northwest-always-lived-in-giant-puddle-like-that/
Santa CawsMicrosoft patched several sev:CRIT cloud vulns, including this ../ in Purview. LMAO.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64676
MostlyHarmless
TaggartWowzers, another perfect 10 from Cisco on Secure Email Gateway, Secure Mail, and Web Manager. This one has:
- RCE
- No patch
- No workaround
- No public IoCs
This attack campaign affects Cisco Secure Email Gateway, both physical and virtual, and Cisco Secure Email and Web Manager appliances, both physical and virtual, when both of the following conditions are met:
- The appliance is configured with the Spam Quarantine feature.
- The Spam Quarantine feature is exposed to and reachable from the internet.
Recommendation is to reimage to a known-good config. Whatever that is, without indicators.
Good luck I guess??
Cisco Security Advisory: Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager
On December 10, Cisco became aware of a new cyberattack campaign targeting a limited subset of appliances with certain ports open to the internet that are running Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager. This attack allows the threat actors to execute arbitrary commands with root privileges on the underlying operating system of an affected appliance. The ongoing investigation has revealed evidence of a persistence mechanism planted by the threat actors to maintain a degree of control over compromised appliances. Cisco strongly recommends that customers follow the guidance provided in the Recommendations section of this advisory to assess exposure and mitigate risks. Cisco Talos discussed these attacks in the blog post UAT-9686 actively targets Cisco Secure Email Gateway and Secure Email and Web Manager. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-attack-N9bf4
Public preview of synced passkeys brings the security benefits of MFA with simpler usability, while avoiding the security risks of weaker MFA options like SMS. However, even the simplest MFA can fail when credentials are lost, making account recovery a critical part of the user experience. To improve usability in such cases, we are introducing public preview for account recovery with AI-powered biometric match against government issued IDs across 192 countries.
DJM (freelance for hire)
r1cksecFairy Law - Compromise or disable EDR security solutions (Windows provides a mitigation policy called MicrosoftSignedOnly, which enforces that a process may only load DLLs that are signed by Microsoft)🕵️♂️