Latest Alerts

Bulletins

Vulnerability Summary for the Week of October 14, 2024

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info Patch Info Acespritech Solutions Pvt. Ltd.--Social Link Groups  Improper Neutralization of Special Elements used in an SQL Command ('SQL…

Comments Off on Vulnerability Summary for the Week of October 14, 2024
October 21, 2024
Current Activity

CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force

Today, CISA—with the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), and international partners—released joint Cybersecurity Advisory Iranian Cyber Actors Brute Force and Credential Access Activity Compromises Critical…

Comments Off on CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force
October 17, 2024
Alerts

Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations

Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Communications Security Establishment Canada (CSE), the Australian Federal Police (AFP),…

Comments Off on Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations
October 17, 2024
Current Activity

Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM)

Today, CISA published the Framing Software Component Transparency, created by the Software Bill of Materials (SBOM) Tooling & Implementation Working Group, one of the five SBOM community-driven workstreams facilitated by CISA. CISA’s…

Comments Off on Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM)
October 16, 2024
Bulletins

Vulnerability Summary for the Week of October 7, 2024

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info Patch Info adobe -- animate  Animate versions 23.0.7, 24.0.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability…

Comments Off on Vulnerability Summary for the Week of October 7, 2024
October 15, 2024
Alerts

Microsoft Releases October 2024 Security Updates

Microsoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users…

Comments Off on Microsoft Releases October 2024 Security Updates
October 8, 2024
Bulletins

Vulnerability Summary for the Week of September 30, 2024

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info n/a--n/a  An issue was discovered in Atos Eviden iCare 2.7.1 through 2.7.11. The application exposes a web…

Comments Off on Vulnerability Summary for the Week of September 30, 2024
October 7, 2024
Current Activity

ASD’s ACSC, CISA, FBI, NSA, and International Partners Release Guidance on Principles of OT Cybersecurity for Critical Infrastructure Organizations

Today, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC)—in partnership with CISA, U.S. government and international partners—released the guide Principles of Operational Technology Cybersecurity. This guidance provides critical…

Comments Off on ASD’s ACSC, CISA, FBI, NSA, and International Partners Release Guidance on Principles of OT Cybersecurity for Critical Infrastructure Organizations
October 2, 2024