-
Threat Actor Leverages Compromised Account of Former Employee to Access State Government Organization
SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC) conducted an incident response assessment of a state government organizations network environment after…
-
Multiple Vulnerabilities in FortiOS Could Allow for Remote Code Execution
MS-ISAC ADVISORY NUMBER: 2024-019 DATE(S) ISSUED: 02/09/2024 OVERVIEW: Multiple vulnerabilities have been discovered in FortiOS, the most severe of which could allow for remote code execution. FortiOS is Fortinet’s operating…
-
VMSA-2024-0002
Important Advisory ID: VMSA-2024-0002 CVSSv3 Range: 4.3 – 7.8 Issue Date: 2024-02-06 Updated On: 2024-02-06 (Initial Advisory) CVE(s): CVE-2024-22237, CVE-2024-22238, CVE-2024-22239, CVE-2024-22240, CVE-2024-22241 Synopsis: VMware Aria Operations for Networks (Formerly…
-
Juniper Networks Releases Security Bulletin for Juniper Secure Analytics
Juniper Networks released a security bulletin to address multiple vulnerabilities affecting Juniper Secure Analytics optional applications. A cyber threat actor could exploit one of these vulnerabilities to take control of…
-
PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure
SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI) assess that Peoples Republic of China (PRC) state-sponsored cyber actors are seeking…
-
Multiple Vulnerabilities in Ivanti Products Could Allow for Remote Code Execution
Apply appropriate updates provided by Ivanti to vulnerable systems immediately after appropriate testing. (M1051: Update Software) Safeguard 7.1 : Establish and Maintain a Vulnerability Management Process: Establish and maintain a…
-
VMSA-2024-0001
Critical Advisory ID: VMSA-2024-0001 CVSSv3 Range: 9.9 Issue Date: 2024-01-16 Updated On: 2024-01-16 (Initial Advisory) CVE(s): CVE-2023-34063 Synopsis: VMware Aria Automation (formerly vRealize Automation) updates address a Missing Access Control…
-
VMware Releases Security Advisory for Aria Operations
VMware released a security advisory to address a vulnerability (CVE-2023-34063) in Aria Operations. A cyber threat actor could exploit this vulnerability to take control of an affected system. CISA encourages…
-
Known Indicators of Compromise Associated with Androxgh0st Malware
SUMMARY The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory (CSA) to disseminate known indicators of compromise (IOCs) and…
