Vulnerability Awareness – New Microsoft Outlook Zero-Day Exploit Does Not Require User Action (Updated May 11, 2023)

Report: China Continues to Utilize Most Zero-Day Exploits in Latest Mandiant Report

Threat Awareness – Emotet Malware Being Distributed Via Microsoft OneNote

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 21, 2023

March 22, 2023 WaterISAC Cyber Threat Briefing

Cyber Resilience – Identity and Access Management Best Practices Document Released by CISA/NSA

Security Awareness – $36 Million Vendor Email Compromise Attack Demonstrates Risk of Trust

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 23, 2023

Network Defense – APT Actors Compromise Router Configurations

TLP:AMBER - Water and Wastewater Systems Sector Cyber Risk Summary (March 2023)

Ransomware Resilience – CISA’s JCDC Cultivates Pre-Ransomware Notification Capability

TLP:AMBER Weekly Flashpoint Intelligence Reports: March 23, 2023