ISC StormCast for Monday, March 11th, 2024

A new attack has turned thousands of web users into a password-cracking botnet, highlighting the evolving landscape of cyber threats. Critical vulnerabilities in Cisco VPN clients expose severe risks to user authentication, raising alarms on patching practices. Additionally, font parsing libraries reveal potential for arbitrary code execution, stressing the importance of keeping security tools updated. Plus, urgent QNAP flaws open doors for hackers, emphasizing the necessity for robust protective measures across various platforms.