Current Activity

Drupal Releases Security Update

Original release date: September 30, 2022Drupal has released a security update to address a vulnerability affecting multiple versions of Drupal. An attacker could exploit this vulnerability to access sensitive information.…

Comments Off

September 30, 2022

Current Activity

Microsoft Releases Guidance on Zero-Day Vulnerabilities in Microsoft Exchange Server

Original release date: September 30, 2022Microsoft has released Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server. According to the blog post, “Microsoft is aware of limited targeted attacks…

Comments Off

September 30, 2022

Current Activity

VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere

Original release date: September 29, 2022VMWare has released Protecting vSphere From Specialized Malware, addressing malware artifacts known as VirtualPITA (ESXi & Linux), VirtualPIE (ESXi), and VirtualGATE (Windows), which are used…

Comments Off

September 29, 2022

Current Activity

CISA Releases Six Industrial Control Systems Advisories

Original release date: September 29, 2022CISA has released six (6) Industrial Control Systems (ICS) advisories on September 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and…

Comments Off

September 29, 2022

Current Activity

CISA Publishes User Guide to Prepare for Nov. 1 Move to TLP 2.0

Original release date: September 29, 2022CISA has published its Traffic Light Protocol 2.0 User Guide and Traffic Light Protocol: Moving to Version 2.0 fact sheet in preparation for its November 1,…

Comments Off

September 29, 2022

Current Activity

CISA Has Added One Known Exploited Vulnerability to Catalog 

Original release date: September 22, 2022CISA has added one new vulnerability to it's Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack…

Comments Off

September 22, 2022

Current Activity

CISA and NSA Publish Joint Cybersecurity Advisory on Control System Defense

Original release date: September 22, 2022CISA and the National Security Agency (NSA) have published a joint cybersecurity advisory about control system defense for operational technology (OT) and industrial control systems…

Comments Off

September 22, 2022

Current Activity

ISC Releases Security Advisories for Multiple Versions of BIND 9

Original release date: September 22, 2022The Internet Systems Consortium (ISC) has released security advisories that address vulnerabilities affecting multiple versions of the ISC’s Berkeley Internet Name Domain (BIND) 9. A…

Comments Off

September 22, 2022

Current Activity

CISA Releases Three Industrial Control Systems Advisories

Original release date: September 22, 2022CISA has released three Industrial Control Systems (ICS) advisories on September 22, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits…

Comments Off

September 22, 2022

Current Activity

Microsoft Releases Out-of-Band Security Update for Microsoft Endpoint Configuration Manager

Original release date: September 21, 2022Microsoft has released a security update to address a vulnerability in Microsoft Endpoint Configuration Manager, versions 2103-2207. An attacker could exploit this vulnerability to obtain…

Comments Off

September 22, 2022