AA22-335A: #StopRansomware: Cuba Ransomware

Original release date: December 1, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts.…

Comments Off on AA22-335A: #StopRansomware: Cuba Ransomware

#StopRansomware: Cuba Ransomware 

Original release date: December 1, 2022Today, the Federal Bureau of Investigation (FBI) and CISA released a joint Cybersecurity Advisory (CSA) #StopRansomware: Cuba Ransomware to provide network defenders tactics, techniques, and procedures…

Comments Off on #StopRansomware: Cuba Ransomware 

Vulnerability Summary for the Week of November 21, 2022

Original release date: November 28, 2022 | Last revised: November 29, 2022  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 2code -- wpqa_builder The…

Comments Off on Vulnerability Summary for the Week of November 21, 2022

CISA Releases Seven Industrial Control Systems Advisories

Original release date: November 29, 2022CISA released seven (7) Industrial Control Systems (ICS) advisories on November 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits…

Comments Off on CISA Releases Seven Industrial Control Systems Advisories

Vulnerability Summary for the Week of November 14, 2022

Original release date: November 21, 2022 | Last revised: November 22, 2022  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info aiphone -- gt-dmb-n_firmware Aiphone…

Comments Off on Vulnerability Summary for the Week of November 14, 2022

AA22-321A: #StopRansomware: Hive Ransomware

Original release date: November 17, 2022SummaryActions to Take Today to Mitigate Cyber Threats from Ransomware: • Prioritize remediating known exploited vulnerabilities. • Enable and enforce multifactor authentication with strong passwords…

Comments Off on AA22-321A: #StopRansomware: Hive Ransomware

#StopRansomware: Hive

Original release date: November 17, 2022Today, CISA, the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) released joint Cybersecurity Advisory (CSA) #StopRansomware: Hive Ransomware to…

Comments Off on #StopRansomware: Hive

Cisco Releases Security Updates for Identity Services Engine

Original release date: November 16, 2022Cisco has released security updates for vulnerabilities affecting Cisco Identity Services Engine (ISE). A remote attacker could exploit some of these vulnerabilities to bypass authorization…

Comments Off on Cisco Releases Security Updates for Identity Services Engine

AA22-320A: Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester

Original release date: November 16, 2022SummaryFrom mid-June through mid-July 2022, CISA conducted an incident response engagement at a Federal Civilian Executive Branch (FCEB) organization where CISA observed suspected advanced persistent…

Comments Off on AA22-320A: Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester