-
2022 Top Routinely Exploited Vulnerabilities
SUMMARY The following cybersecurity agencies coauthored this joint Cybersecurity Advisory (CSA): United States: The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI)…
-
Threat Actors Exploiting Ivanti EPMM Vulnerabilities
SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) and the Norwegian National Cyber Security Centre (NCSC-NO) are releasing this joint Cybersecurity Advisory (CSA) in response to active exploitation of CVE-2023-35078…
-
Critical vulnerabilities in Microsoft Windows operating systems
Summary New vulnerabilities continually emerge, but the best defense against attackers exploiting patched vulnerabilities is simple: keep software up to date. Rapid patching is one of the most effective and…
-
Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad
Summary The Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection of our Nation’s critical infrastructure…
-
Continued exploitation of Pulse Secure VPN vulnerability
Summary Unpatched Pulse Secure VPN servers continue to be an attractive target for bad actors. Affected organizations that have not applied the hotfix to address an arbitrary file reading vulnerability,…
-
Microsoft ends support for Windows 7 and Windows Server 2008 R2
Summary Note: This alert does not apply to federally certified voting systems running Windows 7. Microsoft will continue to provide free security updates for these systems until the 2020 elections.…
-
Dridex Malware | CISA
Summary This Alert is the result of recent collaboration between the Department of the Treasury Financial Sector Cyber Information Group (CIG) and the Department of the Treasury’s Financial Crimes Enforcement…
-
BlueKeep vulnerability in Microsoft operating systems
Summary The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this activity alert to provide information about a vulnerability, known as “BlueKeep,” that exists in the following Microsoft Windows operating…
-
Microsoft Windows JPEG Component Buffer Overflow
Affected systems This vulnerability affects the followingDefault Microsoft Windows operating systems: Microsoft Windows XP and Microsoft Windows XP Service Pack 1 Microsoft Windows XP 64-bit Edition Service Pack 1 Microsoft…
