Lucene search
+L
CisaMost viewed

4188 matches found

CISA
CISA
added 2022/06/27 12:0 a.m.12 views

CISA Adds Eight Known Exploited Vulnerabilities to Catalog  

CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly...

1.7AI score
Exploits0References5
CISA
CISA
added 2022/06/22 12:0 a.m.12 views

Google Releases Security Updates for Chrome

Google has released Chrome version 103.0.5060.53 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply the necessary update. Thi...

2.2AI score
Exploits0References1
CISA
CISA
added 2022/06/02 12:0 a.m.12 views

CISA Updates Advisory on Threat Actors Chaining Unpatched VMware Vulnerabilities

CISA has updated Cybersecurity Advisory AA22-138B: Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control, originally released May 18, 2022. The advisory has been updated to include additional indicators of compromise and detection signatures, as well as tactics,...

2.2AI score
Exploits0References2
CISA
CISA
added 2022/06/01 12:0 a.m.12 views

Karakurt Data Extortion Group

CISA, the Federal Bureau of Investigation FBI, the Department of Treasury, and the Financial Crimes Enforcement Network FinCEN have released a joint Cybersecurity Advisory CSA to provide information on the Karakurt data extortion group. Karakurt actors steal data and threaten to auction it off or...

1.5AI score
Exploits0References1
CISA
CISA
added 2022/05/26 12:0 a.m.12 views

Citrix Releases Security Updates for ADC and Gateway

Citrix has released security updates to address vulnerabilities in ADC and Gateway. An attacker could exploit these vulnerabilities to cause a denial-of-service condition. CISA encourages users and administrators to review Citrix Security Update CTX457048 and apply the necessary updates. This...

2.4AI score
Exploits0References1
CISA
CISA
added 2022/05/26 12:0 a.m.12 views

CISA and DoD Release 5G Security Evaluation Process Investigation Study

CISA and the Department of Defense DoD have released their 5G Security Evaluation Process Investigation Study for federal agencies. The new features, capabilities, and services offered by fifth-generation 5G cellular network technology can transform mission and business operations; and federal...

0.3AI score
Exploits0References2
CISA
CISA
added 2022/05/05 12:0 a.m.12 views

Cisco Releases Security Updates for Enterprise NFV Infrastructure Software

Cisco has released security updates to address multiple vulnerabilities in Enterprise NFV Infrastructure Software. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Cisco advisory cisco-sa-NFVIS-MUL-7DySRX9 an...

2.3AI score
Exploits0References2
CISA
CISA
added 2022/04/28 12:0 a.m.12 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Cisco Security Advisories page and apply the necessary...

1.6AI score
Exploits0References1
CISA
CISA
added 2022/04/13 12:0 a.m.12 views

CISA Adds 10 Known Exploited Vulnerabilities to Catalog

CISA has added 10 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added...

1.7AI score
Exploits0References5
CISA
CISA
added 2022/04/07 12:0 a.m.12 views

Guidance on Sharing Cyber Incident Information

CISA’s Sharing Cyber Event Information Fact Sheet provides our stakeholders with clear guidance and information about what to share, who should share, and how to share information about unusual cyber incidents or activity. CISA uses this information from partners to build a common understanding o...

1.6AI score
Exploits0References3
CISA
CISA
added 2022/04/06 12:0 a.m.12 views

Google Releases Security Updates for Chrome

Google has released Chrome version 100.0.4896.75 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply the necessary updates as...

2.2AI score
Exploits0References1
CISA
CISA
added 2022/04/04 12:0 a.m.12 views

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly add...

1.6AI score
Exploits0References5
CISA
CISA
added 2022/03/30 12:0 a.m.12 views

Google Releases Security Updates for Chrome

Google has released Chrome version 100.0.4896.60 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply the necessary update. Thi...

2.2AI score
Exploits0References1
CISA
CISA
added 2022/03/30 12:0 a.m.12 views

FBI Releases PIN on Phishing Campaign against U.S. Election Officials

The Federal Bureau of Investigation FBI has released a Private Industry Notification PIN to warn U.S. election and other state and local government officials about invoice-themed phishing emails that could be used to harvest officials’ login credentials. CISA encourages federal, state, and local...

0.8AI score
Exploits0References1
CISA
CISA
added 2022/03/08 12:0 a.m.12 views

SAP Releases March 2022 Security Updates

SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the SAP Security Notes for March 2022 and apply the necessary...

7.1AI score
Exploits0References1
CISA
CISA
added 2022/03/08 12:0 a.m.12 views

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary...

7AI score
Exploits0References3
CISA
CISA
added 2022/02/26 12:0 a.m.12 views

CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine

CISA and the Federal Bureau of Investigation have released an advisory on destructive malware targeting organizations in Ukraine. The advisory also provides recommendations and strategies to prepare for and respond to destructive malware. Additionally, CISA has created a new Shields Up Technical...

6.8AI score
Exploits0References4
CISA
CISA
added 2022/02/24 12:0 a.m.12 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit one of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA encourages...

7.4AI score
Exploits0References4
CISA
CISA
added 2022/02/03 12:0 a.m.12 views

Cisco Releases Security Updates for RV Series Routers

Cisco has released security updates to address vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the...

7AI score
Exploits0References2
CISA
CISA
added 2022/01/13 12:0 a.m.12 views

Citrix Releases Security Updates for Hypervisor 

Citrix has released security updates to address vulnerabilities in Hypervisor. An attacker could exploit these vulnerabilities to cause a denial-of-service condition. CISA encourages users and administrators to review Citrix Security Update CTX335432 and apply the necessary updates. This product ...

6.8AI score
Exploits0References1
CISA
CISA
added 2022/01/11 12:0 a.m.12 views

SAP Releases January 2022 Security Updates

SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the SAP Security Notes for January 2022 and apply the necessa...

6.7AI score
Exploits0References1
CISA
CISA
added 2022/01/05 12:0 a.m.12 views

VMware Releases Security Updates

VMware has released a security advisory to address a vulnerability in Workstation, Fusion, and ESXi. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review VMware Security Advisory VMSA-2022-0001 and apply the necessa...

6.7AI score
Exploits0References1
CISA
CISA
added 2021/12/16 12:0 a.m.12 views

NSA and CISA Release Final Part IV of Guidance on Securing 5G Cloud Infrastructures

CISA has announced the joint National Security Agency NSA and CISA publication of the final of a four-part series, Security Guidance for 5G Cloud Infrastructures. Part IV: Ensure Integrity of Cloud Infrastructure focuses on platform integrity, microservices infrastructure integrity, launch time...

6.8AI score
Exploits0References3
CISA
CISA
added 2021/12/08 12:0 a.m.12 views

SonicWall Releases Security Advisory for SMA 100 Series Appliances

SonicWall has released a security advisory to address vulnerabilities affecting SonicWall Secure Mobile Access SMA 100 series appliances. A remote attacker could exploit these vulnerabilities to take control of an affected system. SMA 100 series appliances provide an organization’s employees with...

7AI score
Exploits0References2
CISA
CISA
added 2021/12/08 12:0 a.m.12 views

Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird

Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Mozilla security advisories for Firefox...

7.1AI score
Exploits0References3
CISA
CISA
added 2021/10/28 12:0 a.m.12 views

2021 CWE Most Important Hardware Weaknesses

The Homeland Security Systems Engineering and Development Institute, sponsored by the Department of Homeland Security and operated by MITRE, has released the 2021 Common Weakness Enumeration CWE Most Important Hardware Weaknesses List. The 2021 Hardware List is a compilation of the most frequent...

7AI score
Exploits0References1
CISA
CISA
added 2021/10/22 12:0 a.m.12 views

Malware Discovered in Popular NPM Package, ua-parser-js

Versions of a popular NPM package named ua-parser-js was found to contain malicious code. ua-parser-js is used in apps and websites to discover the type of device or browser a person is using from User-Agent data. A computer or device with the affected software installed or running could allow a...

6.5AI score
Exploits0References3
CISA
CISA
added 2021/09/14 12:0 a.m.12 views

Google Releases Security Updates for Chrome

Google has released Chrome version 93.0.4577.82 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply the necessary updates. Thi...

6.9AI score
Exploits0References1
CISA
CISA
added 2021/09/02 12:0 a.m.12 views

Cisco Releases Security Updates for Cisco Enterprise NFVIS

Cisco has released security updates to address a critical vulnerability affecting Cisco Enterprise Network Function Virtualization Infrastructure Software NFVIS Release 4.5.1. A remote attacker could exploit this vulnerability to take control of an affected system. For updates addressing lower...

6.9AI score
Exploits0References2
CISA
CISA
added 2021/09/01 12:0 a.m.12 views

Google Releases Security Updates for Chrome

Google has released Chrome version 93.0.4577.63 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply the necessary updates. Thi...

6.9AI score
Exploits0References1
CISA
CISA
added 2021/06/30 12:0 a.m.12 views

CISA’s CSET Tool Sets Sights on Ransomware Threat

CISA has released a new module in its Cyber Security Evaluation Tool CSET: the Ransomware Readiness Assessment RRA. CSET is a desktop software tool that guides network defenders through a step-by-step process to evaluate their cybersecurity practices on their networks. CSET—applicable to both...

6.6AI score
Exploits0References1
CISA
CISA
added 2021/05/06 12:0 a.m.12 views

 Cisco Releases Security Updates for Multiple Products 

Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA...

8.2AI score
Exploits0References10
CISA
CISA
added 2021/04/20 12:0 a.m.12 views

VMware Releases Security Update

VMware has released a security update to address a vulnerability affecting NSX-T. An attacker can exploit this vulnerability to take control of an affected system CISA encourages users and administrators to review VMSA-2021-0006 and apply the necessary update and workaround. This product is...

6.8AI score
Exploits0References1
CISA
CISA
added 2021/04/13 12:0 a.m.12 views

SAP Releases April 2021 Security Updates

SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the SAP Security Notes for April 2021 and apply the necessary...

6.7AI score
Exploits0References1
CISA
CISA
added 2021/03/09 12:0 a.m.12 views

SAP Releases March 2021 Security Updates

SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the SAP Security Notes for March 2021 and apply the necessary...

6.7AI score
Exploits0References1
CISA
CISA
added 2021/03/05 12:0 a.m.12 views

Microsoft Releases Alternative Mitigations for Exchange Server Vulnerabilities

Microsoft has released alternative mitigation techniques for Exchange Server customers who are not able to immediately apply updates that address vulnerabilities disclosed on March 2, 2021. CISA and Microsoft encourages organizations to upgrade their on-premises Exchange environments to the lates...

6.6AI score
Exploits0References8
CISA
CISA
added 2021/01/13 12:0 a.m.12 views

Attackers Exploit Poor Cyber Hygiene to Compromise Cloud Security Environments

CISA is aware of several recent successful cyberattacks against various organizations’ cloud services. Threat actors used a variety of tactics and techniques, including phishing and brute force logins, to attempt to exploit weaknesses in cloud security practices. In response, CISA has released...

6.7AI score
Exploits0References2
CISA
CISA
added 2020/12/16 12:0 a.m.12 views

Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird

Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Mozilla Security Advisories for Firefox...

7.1AI score
Exploits0References3
CISA
CISA
added 2020/12/15 12:0 a.m.12 views

Apple Releases Security Updates for Multiple Products

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Apple security pages for the following products and apply the...

6.9AI score
Exploits0References8
CISA
CISA
added 2020/12/10 12:0 a.m.12 views

Adobe Releases Security Updates for Acrobat and Reader

Adobe has released security updates to address a vulnerability in Acrobat and Reader. An attacker could exploit this vulnerability to obtain sensitive information. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review Adobe Security Bulletin...

6.4AI score
Exploits0References1
CISA
CISA
added 2020/12/09 12:0 a.m.12 views

National Cyber Security Centre Cyber Awareness Campaign

The United Kingdom UK National Cyber Security Centre NCSC has launched a new cyber security campaign encouraging the public to adopt six behaviors to stay safe online. The six Cyber Aware behaviors recommended by the NSCS are: 1. Use a separate password for your email 2. Create strong passwords...

6.8AI score
Exploits0References9
CISA
CISA
added 2020/11/10 12:0 a.m.12 views

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the Adobe...

7.1AI score
Exploits0References2
CISA
CISA
added 2020/10/16 12:0 a.m.12 views

Adobe Releases Security Updates for Magento

Adobe has released security updates to address vulnerabilities affecting Magento Commerce and Magento Open Source. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and...

7AI score
Exploits0References1
CISA
CISA
added 2020/09/30 12:0 a.m.12 views

CISA and MS-ISAC Release Ransomware Guide

The Cybersecurity and Infrastructure Security Agency CISA and the Multi-State Information Sharing & Analysis Center MS-ISAC have released a joint Ransomware Guide that details practices that organizations should continuously engage in to help manage the risk posed by ransomware and other cyber...

6.8AI score
Exploits0References4
CISA
CISA
added 2020/09/22 12:0 a.m.12 views

Mozilla Releases Security Updates for Firefox and Firefox ESR

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the...

7.2AI score
Exploits0References2
CISA
CISA
added 2020/09/10 12:0 a.m.12 views

ACSC Releases Annual Cyber Threat Report for 2019–2020

The Australian Cyber Security Centre ACSC has released its annual report on key cyber threats and statistics from 2019–2020. The report highlights that phishing and spearphishing are still the most common cyberattacks, and ransomware has become a significant threat to operations across multiple...

6.8AI score
Exploits0References3
CISA
CISA
added 2020/08/31 12:0 a.m.12 views

National Insider Threat Awareness Month

September is National Insider Threat Awareness Month NIATM, which is a collaborative effort between the National Counterintelligence and Security Center NCSC, National Insider Threat Task Force NITTF, Office of the Under Secretary of Defense Intelligence and Security USDI&S, Department of Homelan...

6.7AI score
Exploits0References5
CISA
CISA
added 2020/08/20 12:0 a.m.12 views

Cisco Releases Security Updates

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page. The Cybersecurity an...

7.7AI score
Exploits0References4
CISA
CISA
added 2020/08/20 12:0 a.m.12 views

2020 CWE Top 25 Most Dangerous Software Weaknesses

The Homeland Security Systems Engineering and Development Institute, sponsored by the Department of Homeland Security and operated by MITRE, has released the 2020 Common Weakness Enumeration CWE Top 25 Most Dangerous Software Weaknesses list. The Top 25 uses data from the National Vulnerability...

7AI score
Exploits0References1
CISA
CISA
added 2020/08/19 12:0 a.m.12 views

North Korean Malicious Cyber Activity

The Cybersecurity and Infrastructure Security Agency CISA and the Federal Bureau of Investigation FBI have identified a malware variant—referred to as BLINDINGCAN—used by North Korean actors. CISA encourages users and administrators to review Malware Analysis Report MAR-10295134-1.v1 and CISA’s...

6.8AI score
Exploits0References3
Total number of security vulnerabilities4188