CYNET – Page 84 – CYNET-CSIRT

CISA Insights: Guidance for MSPs and Small- and Mid-sized Businesses

Original release date: July 14, 2021CISA has released CISA Insights: Guidance for Managed Service Providers (MSPs) and Small- and Mid-sized Businesses, which provides mitigation and hardening guidance to help these…

Comments Off

July 14, 2021

Current Activity

SAP Releases July 2021 Security Updates

Original release date: July 13, 2021SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected…

Comments Off

July 14, 2021

Current Activity

Citrix Releases Security Updates for Virtual Apps and Desktops

Original release date: July 13, 2021Citrix has released security updates to address a vulnerability in multiple versions of Virtual Apps and Desktops. An attacker could exploit this vulnerability to take…

Comments Off

July 14, 2021

Current Activity

CISA Issues Emergency Directive on Microsoft Windows Print Spooler

Original release date: July 13, 2021CISA has issued Emergency Directive (ED) 21-04: Mitigate Windows Print Spooler Service Vulnerability addressing CVE-2021-34527. Attackers can exploit this vulnerability to remotely execute code with system…

Comments Off

July 14, 2021

Current Activity

Microsoft Releases July 2021 Security Updates

Original release date: July 13, 2021Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an…

Comments Off

July 13, 2021

Current Activity

Critical ForgeRock Access Management Vulnerability

Original release date: July 12, 2021Malicious cyber actors are actively exploiting a pre-authorization remote code execution vulnerability (CVE-2021-35464) in ForgeRock Access Management—a commercial open access management solution that is based…

Comments Off

July 13, 2021

Current Activity

Kaseya Provides Security Updates for VSA On-Premises Software Vulnerabilities

Original release date: July 12, 2021Kaseya has released VSA version 9.5.7a for their VSA On-Premises software. This version addresses vulnerabilities that enabled the ransomware attacks on Kaseya’s customers. CISA strongly…

Comments Off

July 12, 2021

Bulletins

Vulnerability Summary for the Week of July 5, 2021

Original release date: July 12, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info artware_cms_project -- artware_cms ARTWARE CMS parameter of image upload function…

Comments Off

July 12, 2021

Current Activity

CISA Releases Analysis of FY20 Risk and Vulnerability Assessments

Original release date: July 8, 2021CISA has released an analysis and infographic detailing the findings from the Risk and Vulnerability Assessments (RVAs) conducted in Fiscal Year (FY) 2020 across multiple…

Comments Off

July 8, 2021

Analysis Reports

MAR-10337802-1.v1: DarkSide Ransomware

AR21-189A

Comments Off

July 8, 2021