Identification and Disruption of QakBot Infrastructure

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) are releasing this joint Cybersecurity Advisory (CSA) to disseminate QakBot infrastructure indicators of compromise (IOCs) identified…

Comments Off on Identification and Disruption of QakBot Infrastructure

Vulnerability Summary for the Week of August 21, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info qemu -- qemu The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU,…

Comments Off on Vulnerability Summary for the Week of August 21, 2023

CISA’s VDP Platform 2022 Annual Report Showcases Success

Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its inaugural Vulnerability Disclosure Policy (VDP) Platform 2022 Annual Report, highlighting the service’s progress supporting vulnerability awareness and remediation across the Federal…

Comments Off on CISA’s VDP Platform 2022 Annual Report Showcases Success

Vulnerability Summary for the Week of August 14, 2023

High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info foldingathome -- client_advanced_control An issue was discovered in FoldingAtHome Client Advanced Control GUI before commit 9b619ae64443997948a36dda01b420578de1af77,…

Comments Off on Vulnerability Summary for the Week of August 14, 2023

MAR-10459736.r1.v1 WHIRLPOOL Backdoor

   Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained…

Comments Off on MAR-10459736.r1.v1 WHIRLPOOL Backdoor

Vulnerability Summary for the Week of August 7, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info phoenixcontact -- wp_6xxx_series   In PHOENIX CONTACTs WP 6xxx series web panels in versions prior…

Comments Off on Vulnerability Summary for the Week of August 7, 2023

CISA Releases Twelve Industrial Control Systems Advisories

CISA released twelve Industrial Control Systems (ICS) advisories on August 10, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.  ICSA-23-222-01 Siemens Solid Edge,…

Comments Off on CISA Releases Twelve Industrial Control Systems Advisories

MAR-10454006.r4.v2 SEASPY and WHIRLPOOL Backdoors

  Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained…

Comments Off on MAR-10454006.r4.v2 SEASPY and WHIRLPOOL Backdoors