Latest Alerts

Current Activity

CISA Adds 15 Known Exploited Vulnerability to Catalog

Original release date: March 15, 2022CISA has added 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in the…

Comments Off on CISA Adds 15 Known Exploited Vulnerability to Catalog
March 15, 2022
Current Activity

Updated: Kubernetes Hardening Guide

Original release date: March 15, 2022The National Security Agency (NSA) and CISA have updated their joint Cybersecurity Technical Report (CTR): Kubernetes Hardening Guide, originally released in August 2021, based on…

Comments Off on Updated: Kubernetes Hardening Guide
March 15, 2022
Alerts

AA22-074A: Russian State-Sponsored Cyber Actors Gain Network Access by Exploiting Default Multifactor Authentication Protocols and “PrintNightmare” Vulnerability

Original release date: March 15, 2022SummaryMultifactor Authentication (MFA): A Cybersecurity Essential • MFA is one of the most important cybersecurity practices to reduce the risk of intrusions—according to industry research,…

Comments Off on AA22-074A: Russian State-Sponsored Cyber Actors Gain Network Access by Exploiting Default Multifactor Authentication Protocols and “PrintNightmare” Vulnerability
March 15, 2022
Bulletins

Vulnerability Summary for the Week of March 7, 2022

Original release date: March 14, 2022  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info a3rev -- page_view_count The Page View Count WordPress plugin before…

Comments Off on Vulnerability Summary for the Week of March 7, 2022
March 15, 2022
Current Activity

Dirty Pipe Privilege Escalation Vulnerability in Linux

Original release date: March 10, 2022CISA is aware of a privilege escalation vulnerability in Linux kernel versions 5.8 and later known as “Dirty Pipe” (CVE-2022-0847). A local attacker could exploit…

Comments Off on Dirty Pipe Privilege Escalation Vulnerability in Linux
March 10, 2022
Current Activity

Updated: Conti Ransomware

Original release date: March 9, 2022CISA, the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), and the United States Secret Service (USSS) have re-released an advisory on Conti…

Comments Off on Updated: Conti Ransomware
March 10, 2022
Current Activity

SAP Releases March 2022 Security Updates

Original release date: March 8, 2022SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected…

Comments Off on SAP Releases March 2022 Security Updates
March 8, 2022
Current Activity

Microsoft Releases March 2022 Security Updates

Original release date: March 8, 2022Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an…

Comments Off on Microsoft Releases March 2022 Security Updates
March 8, 2022