Waledac-infected computers are, on average, capable of sending 6,548 spam emails per hour, or two emails per second, according to security vendor ESET. Over the course of several one-hour periods, a Waledac-infected computer in the company's lab delivered between 5,610 to 7,148 spam emails. If 20,000 computers are infected with Waledac, as researchers estimate, then the botnet is capable of sending three billion emails per day, if all infected computers were working to full capacity. — AM
Breach disclosures from T-Mobile and PayPal, SSRF in Azure services, Google Threat Horizons report, integer overflows and more, Rust in Chromium, ML for web scanning, Top 10 web hacking techniques of 2022
Despite multiple high-impact vulnerabilities and repeated warnings from Microsoft, government agencies and news media, there are likely hundreds of thousands of internet-connected servers (at least) running older, exposed versions of Exchange today.
Artificial intelligence poses a pretty scary threat to information security overall, but application-security testers should find AI to be extremely useful for finding flaws and weeding out false positives.