-
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regimes Military and Nuclear Programs
The U.S. Federal Bureau of Investigation (FBI) and the following authoring partners are releasing this Cybersecurity Advisory to highlight cyber espionage activity associated with the Democratic Peoples Republic of Korea…
-
CISA Adds Two Known and Exploited Vulnerabilities to Its Catalog
CISA has added two new vulnerabilities to its catalog of known exploited vulnerabilities, based on evidence of active exploitation. CVE-2012-4792 Microsoft Internet Explorer Use-After-Free Vulnerability CVE-2024-39891 Twilio Authy Information Disclosure…
-
Oracle Quarterly Critical Patches Released July 16, 2024
MS-ISAC NOTICE NUMBER: 2024-082 PUBLICATION DATES: 07/18/2024 PREVIEW: Multiple vulnerabilities have been discovered in Oracle products, the most serious of which could allow remote code execution. AFFECTED SYSTEMS: JD Edwards…
-
CISA Publishes Twenty-One Advisories on Industrial Control Systems
On July 11, 2024, CISA published twenty-one advisories on industrial control systems (ICS). These advisories provide up-to-date information on current security issues, vulnerabilities, and exploits surrounding ICS. Siemens ICSA-24-193-01 Remote…
-
CISA Red Teams Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth
EXECUTIVE SUMMARY In early 2023, the Cybersecurity and Infrastructure Security Agency (CISA) conducted a SILENTSHIELD red team assessment against a Federal Civilian Executive Branch (FCEB) organization. During SILENTSHIELD assessments, the…
-
Peoples Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action
This advisory, authored by the Australian Signals Directorates Australian Cyber Security Centre (ASDs ACSC), the United States Cybersecurity and Infrastructure Security Agency (CISA), the United States National Security Agency (NSA),…
-
Juniper Networks Issues Security Bulletin for Junos OS: SRX Series
Juniper Networks has released a security bulletin to address a vulnerability in Junos OS: SRX Series. An attacker could exploit this vulnerability to cause a denial of service. Users and…
-
Vulnerability in OpenSSH could allow remote code execution
MS-ISAC NOTICE NUMBER: 2024-076 PUBLICATION DATES: 01/07/2024 PREVIEW: A vulnerability has been discovered in OpenSSH that could allow remote code execution. OpenSSH is a suite of secure network utilities based…
-
OMSA-2024-0001
Review ID: OMSA-2024-0001 CVSSv3 range: 6.8 Date of issue: 06/27/2024 Updated: 2024-06-27 (Initial notice) CVE(s): CVE-2024-22260 Synopsis: VMware Workspace One UEM Update Addresses Information Exposure Vulnerability (CVE-2024-22260)













