Category: CISA

CISA Adds Three Actively Exploited Vulnerabilities to KEV Catalog Affecting Arista EOS, Google Chromium V8, and Cisco SD-WAN Infrastructure

CISA Adds Three Actively Exploited Vulnerabilities to KEV Catalog Affecting Arista EOS, Google Chromium V8, and Cisco SD-WAN Infrastructure

Blogging

CISA Adds SolarWinds Serv-U Vulnerability to KEV Catalog Following Confirmed Active Exploitation Activity

CISA Adds SolarWinds Serv-U Vulnerability to KEV Catalog Following Confirmed Active Exploitation Activity

Blogging

CISA Issues Active Exploitation Warning for Mirasvit Deserialization Vulnerability Added to KEV Catalog

CISA Issues Active Exploitation Warning for Mirasvit Deserialization Vulnerability Added to KEV Catalog

Blogging

CISA KEV ALERT: Active Exploitation Detected Against Oracle WebLogic Server Vulnerability

CISA KEV ALERT: Active Exploitation Detected Against Oracle WebLogic Server Vulnerability

Blogging

Federal Watchdog Warns NIST Vulnerability Database Failures Are Undermining U.S. Cybersecurity

Federal Watchdog Warns NIST Vulnerability Database Failures Are Undermining U.S. Cybersecurity

Blogging

CISA Adds Actively Exploited Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to KEV Catalog

CISA Adds Actively Exploited Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to KEV Catalog

Blogging

CISA Adds Three Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

CISA Adds Three Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

Blogging

CISA Adds CVE-2026-48172 LiteSpeed cPanel Plugin Vulnerability to KEV Catalog Following Active Exploitation Activity

CISA Adds CVE-2026-48172 LiteSpeed cPanel Plugin Vulnerability to KEV Catalog Following Active Exploitation Activity

Blogging

CISA Adds Actively Exploited Drupal Core SQL Injection Vulnerability to KEV Catalog

Active Exploitation

CISA Adds Seven Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

CISA Adds Seven Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

Blogging

ScadaBR ICS Platform Exposed to Critical Remote Code Execution Vulnerabilities Affecting Industrial Infrastructure Environments

ScadaBR ICS Platform Exposed to Critical Remote Code Execution Vulnerabilities Affecting Industrial Infrastructure Environments

Blogging

ZKTeco CCTV Cameras Exposed to High-Severity Authentication Bypass Vulnerability Affecting Surveillance Infrastructure

ZKTeco CCTV Cameras Exposed to High-Severity Authentication Bypass Vulnerability Affecting Surveillance Infrastructure

Blogging

CISA Orders Federal Agencies to Patch Actively Exploited Cisco SD-WAN Vulnerability by Sunday

CISA Orders Federal Agencies to Patch Actively Exploited Cisco SD-WAN Vulnerability by Sunday

AI Threat Intelligence

CISA Adds Microsoft Exchange Server Vulnerability to KEV Catalog Following Active Exploitation Activity

CISA Adds Microsoft Exchange Server Vulnerability to KEV Catalog Following Active Exploitation Activity

Blogging

Copper Theft Surge Targeting EV Charging Infrastructure Prompts Federal Cross-Sector Security Alert

Copper Theft Surge Targeting EV Charging Infrastructure Prompts Federal Cross-Sector Security Alert

Blogging

Critical ABB AC500 PLC Vulnerability Exposes Industrial Systems to Potential Remote Code Execution Attacks

Critical ABB AC500 PLC Vulnerability Exposes Industrial Systems to Potential Remote Code Execution Attacks

Blogging

ABB Automation Builder Gateway Vulnerability Exposes Industrial Control Environments to Remote PLC Discovery Risks

ABB Automation Builder Gateway Vulnerability Exposes Industrial Control Environments to Remote PLC Discovery Risks

Blogging

Multiple Critical ABB AC500 V3 Vulnerabilities Expose Industrial Control Systems to Access Bypass, Certificate Manipulation, and Denial-of-Service Risks

Multiple Critical ABB AC500 V3 Vulnerabilities Expose Industrial Control Systems to Access Bypass, Certificate Manipulation, and Denial-of-Service Risks

Blogging

CISA Expands Federal Hiring Push Across Cybersecurity, Infrastructure Security, Acquisition, and Incident Response Divisions

CISA Expands Federal Hiring Push Across Cybersecurity, Infrastructure Security, Acquisition, and Incident Response Divisions

Blogging

MAXHUB Pivot Client Application Exposed by Cryptographic Weakness in Newly Released ICS Advisory

MAXHUB Pivot Client Application Exposed by Cryptographic Weakness in Newly Released ICS Advisory

Blogging

CI FORTIFY: CISA WARNS CRITICAL INFRASTRUCTURE OPERATORS TO PREPARE FOR COMMUNICATIONS FAILURE, OT SABOTAGE, AND LONG-DURATION GEOPOLITICAL CYBER CONFLICT

CI FORTIFY: CISA WARNS CRITICAL INFRASTRUCTURE OPERATORS TO PREPARE FOR COMMUNICATIONS FAILURE, OT SABOTAGE, AND LONG-DURATION GEOPOLITICAL CYBER CONFLICT

Blogging

CISA ADDS IVANTI EPMM VULNERABILITY TO KEV CATALOG AFTER EVIDENCE OF ACTIVE EXPLOITATION

CISA ADDS IVANTI EPMM VULNERABILITY TO KEV CATALOG AFTER EVIDENCE OF ACTIVE EXPLOITATION

Blogging

KEV EXPANSION: CISA FLAGS ACTIVE EXPLOITATION IN CPANEL & WORDPRESS MANAGEMENT STACK

KEV EXPANSION: CISA FLAGS ACTIVE EXPLOITATION IN CPANEL & WORDPRESS MANAGEMENT STACK

Blogging

CISA Shortens Patch Deadlines After Active Exploits Target SolarWinds and Ivanti Systems

Blogging

Active Exploits Detected: CISA Adds Three High-Risk Vulnerabilities to Federal KEV Catalog

Blogging

CYBERATTACK IMPACTS CITY OF SUGAR LAND, TEXAS

CYBERATTACK IMPACTS CITY OF SUGAR LAND, TEXAS

Blogging

FIVE EYES, FRAYED EDGES: UK Intelligence Officials Express Concern Over U.S. Cyber Leadership Instability

Blogging

Trump’s Cybersecurity Team: Potential Picks and Surprising Deliberations

Administration News