“The '@' in the Microsoft-recommended ".*autodiscover\.json.*\@.*Powershell.*" URL block mitigations for CVE-2022-41040 CVE-2022-41082 seems unnecessarily precise, and therefore insufficient.”
https://twitter.com/wdormann/status/1576922677675102208
Thanks.
Regards,
Michael B. Smith
Managing Consultant
Smith Consulting, LLC