Current Activity

SAP Releases March 2022 Security Updates

Original release date: March 8, 2022SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected…

Comments Off

March 8, 2022

Current Activity

Microsoft Releases March 2022 Security Updates

Original release date: March 8, 2022Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an…

Comments Off

March 8, 2022

Current Activity

CISA’s Zero Trust Guidance for Enterprise Mobility Available for Public Comment

Original release date: March 7, 2022CISA has released a draft version of Applying Zero Trust Principles to Enterprise Mobility for public comment. The paper guides federal agencies as they evolve and…

Comments Off

March 7, 2022

Current Activity

CISA Adds 11 Known Exploited Vulnerabilities to Catalog 

Original release date: March 7, 2022CISA has added 11 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in…

Comments Off

March 7, 2022

Current Activity

Mozilla Releases Security Updates for Multiple Products

Original release date: March 7, 2022Mozilla has released security updates to address vulnerabilities in multiple products. An attacker could exploit these vulnerabilities to take control of an affected system.   CISA encourages…

Comments Off

March 7, 2022

Current Activity

NSA Releases Network Infrastructure Security Guidance

Original release date: March 3, 2022The National Security Agency (NSA) has released a new Cybersecurity Technical Report (CTR): Network Infrastructure Security Guidance. The report captures best practices based on the…

Comments Off

March 3, 2022

Current Activity

CISA Adds 95 Known Exploited Vulnerabilities to Catalog

Original release date: March 3, 2022CISA has added 95 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent…

Comments Off

March 3, 2022

Current Activity

Broadcom Software Discloses APT Actors Deploying Daxin Malware in Global Espionage Campaign

Original release date: February 28, 2022Broadcom Software—an industry member of CISA’s Joint Cyber Defense Collaborative (JCDC)—uncovers an advanced persistent threat (APT) campaign against select governments and other critical infrastructure targets…

Comments Off

February 28, 2022

Current Activity

CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine

Original release date: February 26, 2022CISA and the Federal Bureau of Investigation have released an advisory on destructive malware targeting organizations in Ukraine. The advisory also provides recommendations and strategies to…

Comments Off

February 26, 2022

Current Activity

Iranian Government-Sponsored MuddyWater Actors Conducting Malicious Cyber Operations

Original release date: February 24, 2022CISA, the Federal Bureau of Investigation (FBI), U.S. Cyber Command Cyber National Mission Force (CNMF), the United Kingdom’s National Cyber Security Centre (NCSC-UK), and the…

Comments Off

February 24, 2022