Episode 106: Admin Password Resets, Blockchain Botnets and a Central Management RCE

Summary: WordPress 5.7 is due to be released on Mar. 9, and it allows admins to send password reset emails to users. A botnet is abusing the Bitcoin blockchain for C2, while VMWare fixes a critical RCE in all default vCenter installs. We talk about the ramifications of vulnerability disclosures and how last year's File Manager vulnerability did not have long lasting effects on plugin installation base or growth. We also discuss how investor data breach fatigue has reduced the stock price of cybersecurity failures.