Vulnerability Summary for the Week of May 24, 2021

Original release date: May 31, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info aioseo -- all_in_one_seo The All in One SEO – Best…

Comments Off on Vulnerability Summary for the Week of May 24, 2021

Joint CISA-FBI Cybersecurity Advisory on Sophisticated Spearphishing Campaign

Original release date: May 28, 2021CISA and the Federal Bureau of Investigation (FBI) are responding to an ongoing spearphishing campaign targeting government organizations, intergovernmental organizations, and non-governmental organizations. A sophisticated…

Comments Off on Joint CISA-FBI Cybersecurity Advisory on Sophisticated Spearphishing Campaign

FBI Update on Exploitation of Fortinet FortiOS Vulnerabilities

Original release date: May 28, 2021The Federal Bureau of Investigation (FBI) has released an FBI FLASH, APT Actors Exploiting Fortinet Vulnerabilities to Gain Access for Malicious Activity, which describes advanced…

Comments Off on FBI Update on Exploitation of Fortinet FortiOS Vulnerabilities

Updates to Alert on Pulse Connect Secure

Original release date: May 27, 2021CISA has updated Alert AA21-110A: Exploitation of Pulse Connect Secure Vulnerabilities to include new threat actor techniques, tactics, and procedures (TTPs), indicators of compromise (IOCs),…

Comments Off on Updates to Alert on Pulse Connect Secure

Microsoft Announces New Campaign from NOBELIUM

Original release date: May 27, 2021The Microsoft Threat Intelligence Center (MSTIC) has released information on the uncovering of a widespread malicious email campaign undertaken by the activity group that Microsoft tracks…

Comments Off on Microsoft Announces New Campaign from NOBELIUM

Vulnerability Summary for the Week of May 17, 2021

Original release date: May 24, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info cars-seller-auto-classifieds-script_project -- cars-seller-auto-classifieds-script The request_list_request AJAX call of the Car…

Comments Off on Vulnerability Summary for the Week of May 17, 2021

Cisco Releases Security Updates for Multiple Products  

Original release date: May 20, 2021Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected…

Comments Off on Cisco Releases Security Updates for Multiple Products