The vulnerability, tracked as CVE-2022-29499, is a remote code execution flaw that impacts the Mitel Service Application component of MiVoice Connect and was patched in April 2022.
Melissa Bischoping, security researcher with Tanium and Infosec Insiders columnist, urges firms to consider the upstream and downstream impact of "triple extortion" ransomware attacks.
Though Microsoft often reports on the ransomware campaigns it's monitoring, sometimes a competitor exposes activity of note. In this case, Google's exposed a group it's nicknamed "Exotic Lily" that's been using Microsoft's tools for nefarious purposes.