Many versions of the PuTTY client have a weakness that can generate biased ECDSA nonces and enable an attacker to eventually recover private encryption keys.
UnitedHealth Group reports that the Change Healthcare ransomware attack has had an $872 million financial hit on its business, so far.
CISA is warning of a customer data breach at Sisense, a provider of business data analytics platforms, but the details of the incident are scarce still.
The flaw is being exploited in the wild, and no patches will be available until Sunday.
The U.S. government has made public an emergency directive that it issued last week for federal agencies, ordering them to take various mitigation measures after Microsoft's compromise last year.