THREAT ALERTS
FORTIOS/FORTIPROXY CVE 2023 27997
Vulnerability CVE-2023-27997 may allow a remote attacker to execute arbitrary code or commands via specifically crafted requests.
VIEW MORE
CISA: MOZILLA ISSUES SECURITY UPDATES FOR FIREFOX
CISA: Mozilla Issues Security Updates for Firefox
According to CISA, Mozilla has released security updates to address vulnerabilities in Firefox ESR and Firefox. An attacker could exploit some of these vulnerabilities to take control of an affected system.
VIEW MORE
CISA: ONE KNOWN EXPLOITED VULNERABILITY ADDED TO CATALOG
According to CISA, this type of vulnerability is a frequent attack vector for malicious cyber actors and poses a significant risk to the federal enterprise. Note: To view the newly added vulnerabilities in the catalog, click on the arrow in the "Date Added to Catalog" column, which will sort by descending dates.
VIEW MORE
CISA: UPDATES MADE FOR BEST PRACTICES TO MAPPING MITRE ATT&CK
CISA: Updates Made for Best Practices to Mapping MITRE ATT&CK
January 17, 2023: CISA updated Best Practices for MITRE ATT&CK® Mapping
VIEW MORE
CISA: FORTINET ISSUES UPDATES FOR FORTIOS TO NEGATE VULNERABILITY
CISA: Fortinet Issues Updates for FortiOS to Negate Vulnerability - CVE-2022-42475 in FortiOS.
VIEW MORE
WINDOWS DEFENDER UPDATE INCLUDES BUG THAT DELETES SHORTCUTS
A recent windows update conducted Tuesday, January 10th, 2023 included a bug that deletes shortcuts from the desktop, start menu and taskbar. The Windows Defender Update KB2267602 (Version 1.381.2140.0) is said to be linked to the bug. It is believed anyone with Windows Azure AD may be experiencing this glitch.
VIEW MORE
CISA ADDS TWO NEW KNOWN EXPLOITED VULNERABILITIES TO CATALOG
"These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added vulnerabilities in the catalog, click on the arrow in the "Date Added to Catalog" column, which will sort by descending dates. " CISA writes.
VIEW MORE
CISA WARNS OF VULNERABILITY IN PAN-OS OPERATED BY PALO ALTO NETWORKS
CISA Warns of Vulnerability in PAN-OS Operated by Palo Alto Networks is under attack.
This vulnerability needs to be patched ASAP, CISA says.
VIEW MORE
APPLE RELEASES URGENT UPDATE FOR IPHONE, IPAD & MAC USERS
Apple is pushing an urgent update for iPhone, iPad and Mac users. This recent update is to fix a vulnerability in the OS which could allow hackers to completely take over a device.
VIEW MORE
5TH PATCH FOR GOOGLE CHROME ZERO DAY
A new Chrome 104 updated patches 11 vulnerabilities for the web browser. These patches include a zero-day that has been exploited in attacks. The vulnerabilities were originally discovered in July, 2022.
VIEW MORE
CISA: VMWARE RELEASES NEW SECURITY UPDATES
CISA: VMWare Releases New Security Updates to address multiple vulnerabilities in VMWare's Workspace ONE Access, Access Connector, Identity Manager, Identity Manager Connector, and vRealize Automation.
VIEW MORE
CISCO SMALL BUSINESS ROUTERS VULNERABILITY
CISCO Small Business Routers Vulnerability for Series RV160, RV260, RV340, and RV345 Series Routers — could allow an unauthenticated remote attacker to execute arbitrary code or cause a denial of service (DoS) condition on an affected device.
VIEW MORE
MFA IN MICROSOFT BYPASSED IN LARGE-SCALE PHISHING CAMPAIGN
Microsoft warns of a large-scale phishing campaign that bypassed multifactor authentication to break into inboxes.
VIEW MORE
CISA ADDS NEW WINDOWS BUG TO EXPLOITED LIST
CISA urges to patch a new windows bug exploit by August 2.
VIEW MORE
VULNERABILITY FOUND IN COMMONLY USED VEHICLE GPS TRACKER
BitSight reports a commonly used vehicle GPS tracker has vulnerabilities that can not only give access and control of the tracker to hackers but also could allow them to potentially access and cut off fuel, physically stop vehicles, or surveil movement.
VIEW MORE
CISA RELEASES NEW KNOWN EXPLOITED VULNERABILITY
CISA added a new exploited vulnerability to their Exploited Vulnerabilities Catalog.
VIEW MORE
HAVANACRYPT RANSOMWARE DELIVERED IN FAKE GOOGLE UPDATE
Mimicking a Google update, malicious ransomware comes attached, quickly encrypting files before teams can detect it.
VIEW MORE
MILLIONS OF CREDENTIALS STOLEN IN FACEBOOK PHISHING SCAM
Researchers at PIXM have uncovered a major Facebook Messenger phishing scam that’s “potentially impacted hundreds of millions of Facebook users.” More than eight million people have visited just one of these phishing pages so far this year.
VIEW MORE
CISA: PEOPLE'S REPUBLIC OF CHINA STATE-SPONSORED CYBER ACTORS EXPLOIT NETWORK PROVIDERS & DEVICES
CISA and the FBI released a joint cybersecurity advisory June 7th providing information on the way's the People's Republic of China (PRC) state-sponsored cyber actors are exploiting known vulnerabilities to establish a broad network of compromised infrastructure across organizations in the public and private sector. The PRC's state-sponsored cyber threats are targeting major telecommunications companies and network service providers.
VIEW MORE
CISA: ATLASSIAN RELEASE SECURITY UPDATES FOR CONFLUENCE SERVER & DATA CENTER
Security Update CVE-2022-26134
The security advisory was released to address a remote cod execution vulnerability affecting Confluence Server & Data Center products.
VIEW MORE
THE FBI WARNS OF PHISHING SCAMS ASKING FOR DONATIONS RELATED TO THE UKRAINIAN CRISIS
According to the FBI's alert, criminal actors are taking advantage of the crisis in Ukraine by posing as Ukrainian entities needing humanitarian aid or developing fundraising efforts, including monetary and cryptocurrency donations.
VIEW MORE
MICROSOFT OFFICE ZERO-DAY EXPLOIT
A new Zero-Day bug has been discovered in Microsoft Office. The vulnerability was discovered on Friday, May 27th, when nao_sec, a Japan-based cybersecurity research team reported the malicious document.
The vulnerability "uses Word's external link to load the HTML and then uses the 'ms-msdt' scheme to execute PowerShell code," nao_sec reports.
VIEW MORE
CISA ADDS 75 KNOWN EXPLOITED VULNERABILITIES TO CATALOG OVER THE COURSE OF THREE DAYS
75 new vulnerabilities were added to CISA's catalog on May 23rd and 24th.
VIEW MORE
CISA ISSUES EMERGENCY DIRECTIVE AND RELEASES ADVISORY RELATED TO VMWARE VULNERABILITIES
Emergency Directive (ED) 22-03 was issued and released a Cybersecurity Advisory (CSA) in response to active and expected exploitation of multiple vulnerabilities in the following VMware products:
VMware Workspace ONE Access (Access)
VMware Identity Manager (vIDM)
VMware vRealize Automation (vRA)
VMware Cloud Foundation
vRealize Suite Lifecycle Manager
VIEW MORE
CISA, NSA, FBI AND INTERNATIONAL CYBER AUTHORITIES ISSUE ADVISORY FOR MSPS & CUSTOMERS
CISA, in partnership with other cybersecurity organizations across the globe, issued an advisory on May 11 for Managed Service Providers.
VIEW MORE
CISA'S FACT SHEET ON SHARING CYBER EVENT INFORMATION
This fact sheet from CISA provides stakeholders with clear guidance and information about what to share, who to share, and how to share information about unusual cyber incidents or activities.
VIEW MORE
CISA'S SHIELD'S UP ADVISORY
CISA uses information from partners to build a common understanding of how adversaries are targeting U.S. networks and critical infrastructure sectors. This information fills critical information gaps and allows CISA to rapidly deploy resources and render assistance to victims suffering attacks, analyze incoming reporting across sectors to spot trends, and quickly share that information with network defenders to warn other potential victims.
Click the fact sheet link to learn more and visit our Shields Up site for useful information.
VIEW MORE
ISECURE BRIEF: CYBERSECURITY & INFRASTRUCTURE SECURITY AGENCY ISSUES SHIELD'S UP ADVISORY
Cybersecurity & Infrastructure Security Agency (CISA) has released a SHIELDS UP advisory for all US organizations. CISA's SHIELDS UP advisory provides organizations with key information on mitigating cyber threats.
VIEW MORE
VIEW ALL