ZERO-DAYS NOW! VMware, Exchange Under Attack as Ransomware Pivots to Data Theft Only

The source is the KeysGuard Night Owl Daily Cyber Intelligence Report, which provides a comprehensive overview of the current global threat landscape and practical defensive measures. It outlines critical alerts regarding zero-day exploitation in Microsoft Exchange and a surge in VMware Horizon attacks, attributing activity to specific threat clusters like UNC3889. The report details evolving threat categories, including a shift toward data theft-only ransomware, elevated cloud compromise risks, and critical phishing campaigns targeting communication platforms. Furthermore, it supplies technical intelligence such as Indicators of Compromise (IOCs), newly identified malware families like SilverCrate Stealer, and defensive actions, including specific patch priorities and a Sigma rule for detecting Living-Off-the-Land (LOLBin) proxy execution