One of the largest hurdles to cybersecurity change for any organization is resistance. This article outlines best practices for overcoming resistance and paving a faster path to success.

Defend against Follina and DogWalk

On May 30th, 2022, Microsoft issued CVE-2022-30190

This was in reference to the Follina, the first zero-day. The guidance reads:

"A remote code execution vulnerability exists when MDST is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user’s rights."