Threat Alert Icon

THREAT ALERTS

THREAT ALERTS

STAY UP TO DATE


SIGN UP FOR THREAT ALERTS

FORTIOS/FORTIPROXY CVE 2023 27997

Vulnerability CVE-2023-27997 may allow a remote attacker to execute arbitrary code or commands via specifically crafted requests. VIEW MORE

CISA: MOZILLA ISSUES SECURITY UPDATES FOR FIREFOX

CISA: Mozilla Issues Security Updates for Firefox According to CISA, Mozilla has released security updates to address vulnerabilities in Firefox ESR and Firefox. An attacker could exploit some of these vulnerabilities to take control of an affected system. VIEW MORE

CISA: ONE KNOWN EXPLOITED VULNERABILITY ADDED TO CATALOG

According to CISA, this type of vulnerability is a frequent attack vector for malicious cyber actors and poses a significant risk to the federal enterprise. Note: To view the newly added vulnerabilities in the catalog, click on the arrow in the "Date Added to Catalog" column, which will sort by descending dates. VIEW MORE

CISA: UPDATES MADE FOR BEST PRACTICES TO MAPPING MITRE ATT&CK

CISA: Updates Made for Best Practices to Mapping MITRE ATT&CK January 17, 2023: CISA updated Best Practices for MITRE ATT&CK® Mapping VIEW MORE

CISA: FORTINET ISSUES UPDATES FOR FORTIOS TO NEGATE VULNERABILITY

CISA: Fortinet Issues Updates for FortiOS to Negate Vulnerability - CVE-2022-42475 in FortiOS. VIEW MORE

WINDOWS DEFENDER UPDATE INCLUDES BUG THAT DELETES SHORTCUTS

A recent windows update conducted Tuesday, January 10th, 2023 included a bug that deletes shortcuts from the desktop, start menu and taskbar. The Windows Defender Update KB2267602 (Version 1.381.2140.0) is said to be linked to the bug. It is believed anyone with Windows Azure AD may be experiencing this glitch. VIEW MORE

CISA ADDS TWO NEW KNOWN EXPLOITED VULNERABILITIES TO CATALOG

"These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added vulnerabilities in the catalog, click on the arrow in the "Date Added to Catalog" column, which will sort by descending dates. " CISA writes. VIEW MORE

CISA WARNS OF VULNERABILITY IN PAN-OS OPERATED BY PALO ALTO NETWORKS

CISA Warns of Vulnerability in PAN-OS Operated by Palo Alto Networks is under attack. This vulnerability needs to be patched ASAP, CISA says. VIEW MORE

APPLE RELEASES URGENT UPDATE FOR IPHONE, IPAD & MAC USERS

Apple is pushing an urgent update for iPhone, iPad and Mac users. This recent update is to fix a vulnerability in the OS which could allow hackers to completely take over a device. VIEW MORE

5TH PATCH FOR GOOGLE CHROME ZERO DAY

A new Chrome 104 updated patches 11 vulnerabilities for the web browser. These patches include a zero-day that has been exploited in attacks. The vulnerabilities were originally discovered in July, 2022. VIEW MORE

CISA: VMWARE RELEASES NEW SECURITY UPDATES

CISA: VMWare Releases New Security Updates to address multiple vulnerabilities in VMWare's Workspace ONE Access, Access Connector, Identity Manager, Identity Manager Connector, and vRealize Automation. VIEW MORE

CISCO SMALL BUSINESS ROUTERS VULNERABILITY

CISCO Small Business Routers Vulnerability for Series RV160, RV260, RV340, and RV345 Series Routers — could allow an unauthenticated remote attacker to execute arbitrary code or cause a denial of service (DoS) condition on an affected device. VIEW MORE
VIEW ALL