Exchange Zero-Day Under Attack, Ransomware Gets Smarter, Fortinet Critical Flaws

Exchange Zero-Day Under Attack, Ransomware Gets Smarter, Fortinet Critical Flaws

Author: Jim Love May 19, 2026 Duration: 12:48
Cybersecurity Today
NewsTechnology

A dangerous new Microsoft Exchange zero-day is being actively exploited, ransomware gangs are adopting nation-state-style tactics, two fired contractors were caught deleting U.S. government databases after accidentally recording themselves on Microsoft Teams, and Fortinet has patched critical remote code execution flaws.

In this episode of Cybersecurity Today, David Shipley breaks down four major cybersecurity stories that security teams need to know.

Cybersecurity Today would like to thank Material Security for supporting this podcast.  Material security provides. faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365.  Contact them at  material[dot]security 


Microsoft has confirmed active exploitation of a new Exchange Server zero-day, CVE-2026-42897, affecting Exchange Server 2016, Exchange Server 2019, and Exchange Subscription Edition. There is currently no patch, only mitigations through the Exchange Emergency Mitigation Service, with some trade-offs for Outlook Web App users.

Security researcher Marcus Hutchins highlights an unusually disciplined ransomware affiliate operation using tradecraft more commonly associated with nation-state attackers, including a custom SentinelOne endpoint detection and response (EDR) killer and a stripped-down toolset designed to leave fewer forensic traces.

In one of the more astonishing insider threat stories of the week, former OPEX Corporation contractors Muneeb and Sohaib Akhtar were allegedly caught deleting 96 U.S. government databases after leaving a Microsoft Teams recording running.

Also in this episode: Fortinet has released urgent patches for critical unauthenticated remote code execution vulnerabilities in FortiAuthenticator (CVE-2026-44277) and FortiSandbox (CVE-2026-26083).

If you're responsible for enterprise security, patch management, incident response, or cyber risk, this is one you need to see.

Chapters:
00:00 Sponsor Message
00:24 Headlines Intro
00:49 Ransomware Nation-State Discipline
04:18 Exchange Zero-Day Mitigation
07:01 Fired Contractors Caught Recording
09:21 Fortinet Critical Vulnerabilities
11:07 Wrap Up and Sign Off
11:38 Sponsor Deep Dive Ad

#Cybersecurity #MicrosoftExchange #ZeroDay #Ransomware #Fortinet #CyberAttack #Infosec #DavidShipley #CybersecurityToday


Every morning, Jim Love sifts through the noise of the digital world to bring you a clear, concise briefing on what actually matters. Cybersecurity Today isn't about fearmongering; it's about practical awareness. You'll hear straightforward analysis of the most recent attacks targeting companies, from sophisticated ransomware campaigns to stealthy data theft. Jim breaks down the implications of major breach disclosures, explaining not just what was stolen, but how it happened and who is affected. The focus remains on actionable intelligence-concrete steps and strategic thinking that can help protect your organization's data and infrastructure. This daily podcast serves as an essential filter for IT professionals, business leaders, and anyone responsible for digital assets, transforming complex threats into understandable insights. Tune in for a grounded perspective on navigating an online landscape where the risks are constantly evolving, and the need for clear, timely information has never been greater.
Author: Language: English Episodes: 100

Official website RSS
linkedin
Cybersecurity Today
Podcast Episodes
HPE Open View Vulnerability Hits CISA Known Exploited List [not-audio_url] [/not-audio_url]

Duration: 10:58
Cybersecurity Today: Credit Card Skimming, Valley Rat Malware, WhatsApp Exploit & AI Defenses In this episode of Cybersecurity Today, hosted by Jim Love, we explore several critical cybersecurity threats and advancements…
Cybersecurity Today: The Month in Review - Key Stories and Insights [not-audio_url] [/not-audio_url]

Duration: 50:29
In this episode of Cybersecurity Today, brought to you by Meter, we review key events and stories from the past few weeks. Join host Jim along with experts Tammy Harper from Flair, Laura Payne from White Tuque, and David…
Window's Blue Screen of Death Vulnerability [not-audio_url] [/not-audio_url]

Duration: 9:42
Cybersecurity Today: Sideloaded App Issues, Fake Blue Screen Attacks, and Rising Ransomware Threats In this episode of Cybersecurity Today, host Jim Love discusses HSBC blocking sideloaded apps with its banking app, new…
Kimwolf Bot Strikes - "Routers Will Not Protect You" [not-audio_url] [/not-audio_url]

Duration: 13:05
In this episode of Cybersecurity Today, host Jim Love discusses the latest in cybersecurity threats including the rapidly growing Kim Wolf botnet affecting millions of devices, the rising threats to file-sharing environm…
Final Encore Episode - Research, Cybersecurity Awareness and Training [not-audio_url] [/not-audio_url]

Duration: 1:23:55
In this episode, host Jim Love discusses the importance of cybersecurity awareness and training, featuring insights from Michael Joyce of the Human-Centric Cybersecurity Partnership at the University of Montreal and Davi…
MongoDB - MongoBleed Vulnerability Exploit Reported On Christmas Day [not-audio_url] [/not-audio_url]

Duration: 14:01
Cybersecurity Today: MongoDB Vulnerability 'Mongo Bleed' Exploited, Rainbow Six Siege Hacked, Trust Wallet Compromise, and GrubHub Crypto Scams In this episode of Cybersecurity Today, David Shipley covers significant cyb…
A Hacker Tells His Story [not-audio_url] [/not-audio_url]

Duration: 56:07
This is an interview with former hacker Brian Black. Brian is now on the right side of the battle and bringing his skills to to the fight against hackers. He finds the weaknesses in corporate security so that it can be p…

«1...45678910»