ACSC Releases Advisory on Mailto Ransomware Incidents

The Australian Cyber Security Centre (ACSC) has released an advisory on Mailto ransomware incidents. The ACSC has limited information regarding the initial intrusion vector for Mailto, also known as Kazakavkovkiz,…

Comments Off on ACSC Releases Advisory on Mailto Ransomware Incidents

IRS Launches “Identity Theft Central” Webpage

The Internal Revenue Service (IRS) has launched its “Identity Theft Central” webpage to provide 24/7 access to online information regarding tax-related identity theft and data security protection. Tax-related identity theft…

Comments Off on IRS Launches “Identity Theft Central” Webpage

OpenSMTPD Vulnerability

The CERT Coordination Center (CERT/CC) has released information on a vulnerability affecting OpenSMTPD. An attacker could exploit this vulnerability to take control of an affected system. OpenSMTPD is an open-source…

Comments Off on OpenSMTPD Vulnerability

AA20-031A: Detecting Citrix CVE-2019-19781

Unknown cyber network exploitation (CNE) actors have successfully compromised numerous organizations that employed vulnerable Citrix devices through a critical vulnerability known as CVE-2019-19781.[1] Though mitigations were released on the same…

Comments Off on AA20-031A: Detecting Citrix CVE-2019-19781

Adobe Releases Security Updates for Magento

Adobe has released security updates to address vulnerabilities affecting Magento Commerce and Open Source editions. An attacker could exploit some of these vulnerabilities to take control of an affected system.The…

Comments Off on Adobe Releases Security Updates for Magento

Cisco Releases Security Updates for Cisco Small Business Switches

Cisco has released security updates to address vulnerabilities affecting Cisco Small Business Switches. A remote attacker could exploit one of these vulnerabilities to obtain sensitive information.The Cybersecurity and Infrastructure Security…

Comments Off on Cisco Releases Security Updates for Cisco Small Business Switches

Tax Identity Theft Awareness Week

Tax Identity Theft Awareness Week is February 3-7. The Federal Trade Commission (FTC) Tax Identity Theft Awareness Week webpage will provide webinars and other resources from FTC and its partners…

Comments Off on Tax Identity Theft Awareness Week

Data Privacy Day: A Vision for the Future

January 28 is Data Privacy Day, an annual effort to empower individuals and organizations to respect privacy, safeguard data, and enable trust. This year, the National Cyber Security Alliance (NCSA)…

Comments Off on Data Privacy Day: A Vision for the Future

NSA Releases Guidance on Mitigating Cloud Vulnerabilities

The National Security Agency (NSA) has released an information sheet with guidance on mitigating cloud vulnerabilities. NSA identifies cloud security components and discusses threat actors, cloud vulnerabilities, and potential mitigation…

Comments Off on NSA Releases Guidance on Mitigating Cloud Vulnerabilities

Citrix Releases Security Updates for SD-WAN WANOP

Citrix has released security updates to address the CVE-2019-19781 vulnerability in Citrix SD-WAN WANOP. An attacker could exploit this vulnerability to take control of an affected system. Citrix has also…

Comments Off on Citrix Releases Security Updates for SD-WAN WANOP