MAR-10459736.r1.v1 WHIRLPOOL Backdoor

   Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained…

Comments Off on MAR-10459736.r1.v1 WHIRLPOOL Backdoor

Vulnerability Summary for the Week of August 7, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info phoenixcontact -- wp_6xxx_series   In PHOENIX CONTACTs WP 6xxx series web panels in versions prior…

Comments Off on Vulnerability Summary for the Week of August 7, 2023

CISA Releases Twelve Industrial Control Systems Advisories

CISA released twelve Industrial Control Systems (ICS) advisories on August 10, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.  ICSA-23-222-01 Siemens Solid Edge,…

Comments Off on CISA Releases Twelve Industrial Control Systems Advisories

MAR-10454006.r4.v2 SEASPY and WHIRLPOOL Backdoors

  Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained…

Comments Off on MAR-10454006.r4.v2 SEASPY and WHIRLPOOL Backdoors

Vulnerability Summary for the Week of July 31, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info yunyecms -- yunyecms SQL injection vulnerability in yunyecms 2.0.2 allows remote attackers to run arbitrary…

Comments Off on Vulnerability Summary for the Week of July 31, 2023

CISA Releases its Cybersecurity Strategic Plan

Today, CISA released a strategic plan to lay out how we will fulfill our cybersecurity mission over the next three years. The CISA Cybersecurity Strategic Plan aligns the following nine…

Comments Off on CISA Releases its Cybersecurity Strategic Plan

2022 Top Routinely Exploited Vulnerabilities

SUMMARY The following cybersecurity agencies coauthored this joint Cybersecurity Advisory (CSA): United States: The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI)…

Comments Off on 2022 Top Routinely Exploited Vulnerabilities

CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) and the Norwegian National Cyber Security Centre (NCSC-NO) have released a joint Cybersecurity Advisory (CSA), Threat Actors Exploiting Ivanti EPMM Vulnerabilities, in response…

Comments Off on CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities