SANS Stormcast Tuesday, April 21st, 2026: CVE and EPSS; Windows Server 2025 OOB;  QEMU Abuse;

SANS Stormcast Tuesday, April 21st, 2026: CVE and EPSS; Windows Server 2025 OOB; QEMU Abuse;

From SANS Stormcast: Daily Cyber Security News by Johannes Ullrich

April 21, 2026 · 6 min · Episode 9900

About this episode

This episode discusses the handling of CVEs with EPSS, an out-of-band patch for Windows Server 2025, and the abuse of QEMU for ransomware delivery.

Handling the CVE Flood With EPSS https://isc.sans.edu/diary/Handling%20the%20CVE%20Flood%20With%20EPSS/32914 Windows Server 2025 Out of Band Patch https://learn.microsoft.com/en-us/windows/release-health/windows-message-center#4835 QEMU abused to evade detection and enable ransomware delivery https://www.sophos.com/en-us/blog/qemu-abused-to-evade-detection-and-enable-ransomware-delivery

People in this episode

Host: Johannes Ullrich

Topics covered

  • CVE Management
  • Windows Server Updates
  • Ransomware
  • Cyber Security
  • QEMU Exploits

Keywords

  • CVE
  • EPSS
  • Windows Server 2025
  • QEMU
  • Ransomware
  • Cyber Security News
  • Out of Band Patch

Mentioned in this episode

Organizations: SANS, Microsoft, Sophos

Products: Windows Server 2025, QEMU

More episodes of SANS Stormcast: Daily Cyber Security News

Explore listener stats, chart rankings, contacts and more on the SANS Stormcast: Daily Cyber Security News podcast page.