Latest Alerts

Alerts

Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider

Summary The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this advisory in response to ransomware actors leveraging unpatched instances of a vulnerability in SimpleHelp Remote Monitoring and Management (RMM)…

Comments Off on Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider
June 12, 2025
Bulletins

Vulnerability Summary for the Week of June 2, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info 1000 Projects--ABC Courier Management System A vulnerability, which was classified as critical, was found in 1000 Projects ABC Courier…

Comments Off on Vulnerability Summary for the Week of June 2, 2025
June 9, 2025
Current Activity

Updated Guidance on Play Ransomware

CISA, the Federal Bureau of Investigation (FBI), and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) have issued an updated advisory on Play ransomware, also known as Playcrypt. This…

Comments Off on Updated Guidance on Play Ransomware
June 5, 2025
Bulletins

Vulnerability Summary for the Week of May 26, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info 1000 Projects--Daily College Class Work Report Book A vulnerability classified as critical has been found in 1000 Projects Daily…

Comments Off on Vulnerability Summary for the Week of May 26, 2025
June 2, 2025
Bulletins

Vulnerability Summary for the Week of May 19, 2025

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source Info AutomationDirect--MB-Gateway The embedded web server lacks authentication and access controls, allowing unrestricted remote access. This could lead to configuration…

Comments Off on Vulnerability Summary for the Week of May 19, 2025
May 27, 2025
Current Activity

Advisory Update on Cyber Threat Activity Targeting Commvault’s SaaS Cloud Application (Metallic)

Commvault is monitoring cyber threat activity targeting their applications hosted in their Microsoft Azure cloud environment. Threat actors may have accessed client secrets for Commvault’s (Metallic) Microsoft 365 (M365) backup software-as-a-service…

Comments Off on Advisory Update on Cyber Threat Activity Targeting Commvault’s SaaS Cloud Application (Metallic)
May 23, 2025
Alerts

Russian GRU Targeting Western Logistics Entities and Technology Companies

Executive Summary This joint cybersecurity advisory (CSA) highlights a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies. This includes those involved in the coordination, transport, and delivery…

Comments Off on Russian GRU Targeting Western Logistics Entities and Technology Companies
May 22, 2025