Yearly Archives: 2023

Current Activity

CISA Releases its Cybersecurity Strategic Plan

Today, CISA released a strategic plan to lay out how we will fulfill our cybersecurity mission over the next three years. The CISA Cybersecurity Strategic Plan aligns the following nine…

Comments Off on CISA Releases its Cybersecurity Strategic Plan
August 5, 2023
Alerts

2022 Top Routinely Exploited Vulnerabilities

SUMMARY The following cybersecurity agencies coauthored this joint Cybersecurity Advisory (CSA): United States: The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI)…

Comments Off on 2022 Top Routinely Exploited Vulnerabilities
August 4, 2023
Current Activity

CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) and the Norwegian National Cyber Security Centre (NCSC-NO) have released a joint Cybersecurity Advisory (CSA), Threat Actors Exploiting Ivanti EPMM Vulnerabilities, in response…

Comments Off on CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities
August 2, 2023
Bulletins

Vulnerability Summary for the Week of July 24, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info biltay_technology -- scienta   Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')…

Comments Off on Vulnerability Summary for the Week of July 24, 2023
August 2, 2023
Alerts

Threat Actors Exploiting Ivanti EPMM Vulnerabilities

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) and the Norwegian National Cyber Security Centre (NCSC-NO) are releasing this joint Cybersecurity Advisory (CSA) in response to active exploitation of CVE-2023-35078…

Comments Off on Threat Actors Exploiting Ivanti EPMM Vulnerabilities
August 1, 2023
Current Activity

Ivanti Releases Security Updates for EPMM to address CVE-2023-35081

Ivanti has identified and released patches for a directory traversal vulnerability (CVE-2023-35081, CWE-22) in Ivanti Endpoint Manager Mobile (EPMM). This vulnerability allows an attacker with EPMM administrator privileges to write…

Comments Off on Ivanti Releases Security Updates for EPMM to address CVE-2023-35081
July 29, 2023
Current Activity

CISA Releases Malware Analysis Reports on Barracuda Backdoors

CISA has published three malware analysis reports on malware variants associated with exploitation of CVE-2023-2868. CVE-2023-2868 is a remote command injection vulnerability affecting Barracuda Email Security Gateway (ESG) Appliance, versions…

Comments Off on CISA Releases Malware Analysis Reports on Barracuda Backdoors
July 29, 2023
Analysis Reports

MAR-10454006-r3.v1 Exploit Payload Backdoor

   Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained…

Comments Off on MAR-10454006-r3.v1 Exploit Payload Backdoor
July 28, 2023
Analysis Reports

MAR-10454006-r2.v1 SEASPY Backdoor

   Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained…

Comments Off on MAR-10454006-r2.v1 SEASPY Backdoor
July 28, 2023
Analysis Reports

MAR-10454006-r1.v2 SUBMARINE Backdoor

   Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained…

Comments Off on MAR-10454006-r1.v2 SUBMARINE Backdoor
July 28, 2023