Zero-day fuels DDoS , 23andMe password reset, Exchange’s ‘better’ patch

Vulnerabilities in HTTP/2 and Microsoft Exchange have seen substantial DDoS attacks, while 23andMe resets passwords after genetic data was posted online. At the same time, Microsoft plans to phase out VBScript due to its use in malware delivery. A Mirai-based DDoS botnet has also added 13 new exploits. Meanwhile, Linux systems are at risk from a one-click exploit while Microsoft, Adobe, and SAP have released many patches, including for a zero-day DDoS flaw.