Citrix Releases Security Updates for Citrix Hypervisor

Citrix has released security updates addressing vulnerabilities in Citrix Hypervisor 8.2 CU1 LTSR. A cyber threat actor could exploit these vulnerabilities to take control of an affected system. CISA encourages…

Comments Off on Citrix Releases Security Updates for Citrix Hypervisor

FBI and CISA Release Advisory on Scattered Spider Group

Today, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released a joint Cybersecurity Advisory (CSA) on Scattered Spider—a cybercriminal group targeting commercial facilities sectors…

Comments Off on FBI and CISA Release Advisory on Scattered Spider Group

Scattered Spider

SUMMARY The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory (CSA) in response to recent activity by Scattered Spider threat…

Comments Off on Scattered Spider

Vulnerability Summary for the Week of November 6, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 1e -- platform The 1E-Exchange-URLResponseTime instruction that is part of the Network product pack available…

Comments Off on Vulnerability Summary for the Week of November 6, 2023

CISA, FBI, and MS-ISAC Release Advisory on Rhysida Ransomware

Today, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint Cybersecurity Advisory (CSA), #StopRansomware:…

Comments Off on CISA, FBI, and MS-ISAC Release Advisory on Rhysida Ransomware

#StopRansomware: Rhysida Ransomware

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders detailing various ransomware variants and ransomware threat actors. These #StopRansomware…

Comments Off on #StopRansomware: Rhysida Ransomware

ACSC and CISA Release Business Continuity in a Box

Today, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) and CISA released Business Continuity in a Box. Business Continuity in a Box, developed by ACSC with contributions from…

Comments Off on ACSC and CISA Release Business Continuity in a Box

CISA Published When to Issue VEX Information

Today, CISA published When to Issue Vulnerability Exploitability eXchange (VEX) Information, developed by a community of industry and government experts with the goal to offer some guidance and structure for…

Comments Off on CISA Published When to Issue VEX Information

Vulnerability Summary for the Week of October 30, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info contec -- solarview_compact_firmware An issue in Contec SolarView Compact v.6.0 and before allows an attacker…

Comments Off on Vulnerability Summary for the Week of October 30, 2023

VMware Releases Advisory for VMware Tools Vulnerabilities

VMware released a security advisory addressing multiple vulnerabilities (CVE-2023-34057, CVE-2023-34058) in VMware Tools. A cyber actor could exploit one of these vulnerabilities to take control of an affected system. CISA…

Comments Off on VMware Releases Advisory for VMware Tools Vulnerabilities