Latest Alerts – CYNET-CSIRT

CISA and USCG Identify Areas for Cyber Hygiene Improvement After Conducting Proactive Threat Hunt at US Critical Infrastructure Organization

Summary The Cybersecurity and Infrastructure Security Agency (CISA) and U.S. Coast Guard (USCG) are issuing this Cybersecurity Advisory to present findings from a recent CISA and USCG hunt engagement. The…

Comments Off

August 1, 2025

Current Activity

Eviction Strategies Tool Released

Today, CISA released the Eviction Strategies Tool to provide cyber defenders with critical support and assistance during the containment and eviction phases of incident response. This tool includes: Cyber Eviction…

Comments Off

July 31, 2025

Bulletins

Vulnerability Summary for the Week of July 21, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info 1000 Projects--ABC Courier Management System A vulnerability has been found in 1000 Projects ABC Courier Management System 1.0 and…

Comments Off

July 28, 2025

Alerts

#StopRansomware: Interlock

Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware…

Comments Off

July 23, 2025

Bulletins

Vulnerability Summary for the Week of July 14, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info aapanel--aapanel WP Toolkit The aapanel WP Toolkit plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization…

Comments Off

July 21, 2025

Current Activity

CISA Adds One Known Exploited Vulnerability, CVE-2025-53770 “ToolShell,” to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. See CISA’s Alert Microsoft Releases Guidance on Exploitation of SharePoint Vulnerability (CVE-2025-53770) for…

Comments Off

July 21, 2025

Current Activity

Microsoft Releases Guidance on Exploitation of SharePoint Vulnerability (CVE-2025-53770)

CISA is aware of active exploitation of a new remote code execution (RCE) vulnerability enabling unauthorized access to on-premise SharePoint servers. While the scope and impact continue to be assessed, the…

Comments Off

July 21, 2025

Bulletins

Vulnerability Summary for the Week of July 7, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info Radiflow--iSAP Smart Collector The device has two web servers that expose unauthenticated REST APIs on the management network (TCP…

Comments Off

July 14, 2025

Bulletins

Vulnerability Summary for the Week of June 30, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info ABB--RMC-100 Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the…

Comments Off

July 7, 2025

Bulletins

Vulnerability Summary for the Week of June 23, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info 70mai--M300 A vulnerability was found in 70mai M300 up to 20250611 and classified as critical. Affected by this issue…

Comments Off

June 30, 2025