Latest Alerts

Alerts

AA20-266A: LokiBot Malware

Original release date: September 22, 2020SummaryThis Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise frameworks for all referenced threat actor techniques.…

Comments Off on AA20-266A: LokiBot Malware
September 22, 2020
Bulletins

Vulnerability Summary for the Week of September 14, 2020

Original release date: September 21, 2020  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info apache -- struts Apache Struts 2.0.0 to 2.5.20 forced double…

Comments Off on Vulnerability Summary for the Week of September 14, 2020
September 22, 2020
Current Activity

Samba Releases Security Update for CVE-2020-1472

Original release date: September 21, 2020The Samba Team has released a security update to address a critical vulnerability—CVE-2020-1472—in multiple versions of Samba. This vulnerability could allow a remote attacker to…

Comments Off on Samba Releases Security Update for CVE-2020-1472
September 21, 2020
Current Activity

CISA Releases Emergency Directive on Microsoft Windows Netlogon Remote Protocol

Original release date: September 18, 2020The Cybersecurity and Infrastructure Security Agency (CISA) has released Emergency Directive (ED) 20-04 addressing a critical vulnerability— CVE-2020-1472—affecting Microsoft Windows Netlogon Remote Protocol. An unauthenticated…

Comments Off on CISA Releases Emergency Directive on Microsoft Windows Netlogon Remote Protocol
September 19, 2020
Current Activity

CERT/CC Releases Information on Critical Vulnerability in Microsoft Windows Netlogon Remote Protocol

Original release date: September 17, 2020The CERT Coordination Center (CERT/CC) has released information on CVE-2020-1472, a vulnerability affecting Microsoft Windows Netlogon Remote Protocol. An unauthenticated attacker could exploit this vulnerability…

Comments Off on CERT/CC Releases Information on Critical Vulnerability in Microsoft Windows Netlogon Remote Protocol
September 17, 2020
Current Activity

Adobe Releases Security Update for Media Encoder

Original release date: September 16, 2020Adobe has released a security update to address vulnerabilities in Media Encoder. An attacker could exploit these vulnerabilities to obtain sensitive information. The Cybersecurity and…

Comments Off on Adobe Releases Security Update for Media Encoder
September 16, 2020
Alerts

AA20-259A: Iran-Based Threat Actor Exploits VPN Vulnerabilities

Original release date: September 15, 2020SummaryThis Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques.…

Comments Off on AA20-259A: Iran-Based Threat Actor Exploits VPN Vulnerabilities
September 15, 2020
Analysis Reports

AR20-259A: MAR-10297887-1.v1 – Iranian Web Shells

Original release date: September 15, 2020Description Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any…

Comments Off on AR20-259A: MAR-10297887-1.v1 – Iranian Web Shells
September 15, 2020
Current Activity

Iran-Based Threat Actor Exploits VPN Vulnerabilities

Original release date: September 15, 2020The Cybersecurity Security and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory on an Iran-based malicious…

Comments Off on Iran-Based Threat Actor Exploits VPN Vulnerabilities
September 15, 2020