Critical zero-days in Microsoft Active Directory, SonicWall SMA1000, GitHub malware campaign
Microsoft patches record 622 flaws including two zero-days in Active Directory and SharePoint under active attack. SonicWall confirms exploitation of SMA1000 zero-days. GitHub supply-chain attack spreads 300 fake repositories with infostealer malware.