Category: Vulnerability Management

CISA Adds Three Actively Exploited Vulnerabilities to KEV Catalog Affecting Arista EOS, Google Chromium V8, and Cisco SD-WAN Infrastructure

CISA Adds Three Actively Exploited Vulnerabilities to KEV Catalog Affecting Arista EOS, Google Chromium V8, and Cisco SD-WAN Infrastructure

Blogging

CISA Adds Actively Exploited Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to KEV Catalog

CISA Adds Actively Exploited Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to KEV Catalog

Blogging

CISA Adds Three Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

CISA Adds Three Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

Blogging

CISA Adds Actively Exploited Drupal Core SQL Injection Vulnerability to KEV Catalog

Active Exploitation

CISA Adds Microsoft Exchange Server Vulnerability to KEV Catalog Following Active Exploitation Activity

CISA Adds Microsoft Exchange Server Vulnerability to KEV Catalog Following Active Exploitation Activity

Blogging

CISA ADDS IVANTI EPMM VULNERABILITY TO KEV CATALOG AFTER EVIDENCE OF ACTIVE EXPLOITATION

CISA ADDS IVANTI EPMM VULNERABILITY TO KEV CATALOG AFTER EVIDENCE OF ACTIVE EXPLOITATION

Blogging

CRITICAL ICS ALERT: ANVIZ DEVICE ECOSYSTEM EXPOSED TO HIGH-SEVERITY VULNERABILITIES WITH FULL SYSTEM COMPROMISE POTENTIAL

CRITICAL ICS ALERT: ANVIZ DEVICE ECOSYSTEM EXPOSED TO HIGH-SEVERITY VULNERABILITIES WITH FULL SYSTEM COMPROMISE POTENTIAL

Blogging

CISA FLAGS SEVEN ACTIVELY EXPLOITED VULNERABILITIES ACROSS MICROSOFT, ADOBE, AND FORTINET SYSTEMS

CISA FLAGS SEVEN ACTIVELY EXPLOITED VULNERABILITIES ACROSS MICROSOFT, ADOBE, AND FORTINET SYSTEMS

Blogging

CISA ADDS LEGACY OFFICE RCE AND SHAREPOINT FLAW TO KEV AS ACTIVE EXPLOITATION CONTINUES

CISA ADDS LEGACY OFFICE RCE AND SHAREPOINT FLAW TO KEV AS ACTIVE EXPLOITATION CONTINUES

Blogging

KEV CATALOG EXPANSION — F5 BIG-IP REMOTE CODE EXECUTION VULNERABILITY ADDED AFTER ACTIVE EXPLOITATION CONFIRMED

KEV CATALOG EXPANSION — F5 BIG-IP REMOTE CODE EXECUTION VULNERABILITY ADDED AFTER ACTIVE EXPLOITATION CONFIRMED

Blogging

ICS ACCESS CONTROL FAILURE — OPENCODE MESSAGING AND USSD GATEWAY VULNERABILITY ENABLES CROSS-TENANT SMS DATA EXPOSURE

ICS ACCESS CONTROL FAILURE — OPENCODE MESSAGING AND USSD GATEWAY VULNERABILITY ENABLES CROSS-TENANT SMS DATA EXPOSURE

Blogging

CISA Adds Two Cisco SD-WAN Vulnerabilities to Known Exploited Vulnerabilities (KEV) Catalog

Blogging

CISA Orders Emergency Patch After Exploited SolarWinds Web Help Desk Vulnerability Bypasses Prior Fixes

CISA Orders Emergency Patch After Exploited SolarWinds Web Help Desk Vulnerability Bypasses Prior Fixes

Blogging

CISA Retires Ten Emergency Directives as KEV Enforcement Replaces Crisis-Driven Patch Mandates

CISA Retires Ten Emergency Directives as KEV Enforcement Replaces Crisis-Driven Patch Mandates

Blogging

CVE at a Crossroads: Who Controls the World’s Vulnerability Database?

Blogging

SonicWall Warns of Hackers Exploiting SMA Zero-Day Vulnerability

Blogging

CISA Issues Warning as SonicWall Vulnerability is Exploited, Ransomware Threats Loom

Blogging

Old CCTV Cameras Create New Opportunities for Mirai Botnet Variant Exploitation

Blogging

BlackByte Ransomware Gang: The Hidden Threat Behind Unreported Attacks

Blogging

Global Surveillance Exposed: The TAG-100 Cyber Espionage Operation.

Advanced Persistent Threats (APT)

Cybersecurity Threats and Breaches: May 1st, 2024

Blogging

Linux Security Update: Tackling Vulnerabilities and Threats

Blogging

Military Cybersecurity: Today’s Digital Defense Challenges

Blogging