Morning Overview on MSN

CISA just ordered every federal agency to lock down the May 29 Exchange flaw — the patch deadline passed last week with the bug still being weaponized in single emails

The deadline was May 29. It came and went. And a high-severity Microsoft Exchange Server vulnerability that attackers are ...
TechCrunch

US government downgrades bug in Chirp Systems app that contained hardcoded password

A vulnerability in a smart access control system used in thousands of U.S. rental homes went unfixed for years because Chirp Systems, the company that makes the system, ignored requests to fix the ...
Krebs on Security

Crickets from Chirp Systems in Smart Lock Key Leak

The U.S. government is warning that “smart locks” securing entry to an estimated 50,000 dwellings nationwide contain hard-coded credentials that can be used to remotely open any of the locks. The lock ...