CISA

  • Blog
    digitpatrox7 days ago
    28

    CISA tags NAKIVO backup flaw as actively exploited in attacks

    CISA has warned U.S. federal agencies to secure their networks against attacks exploiting a high-severity vulnerability in NAKIVO’s Backup & Replication software. Tracked as CVE-2024-48248, this absolute path traversal flaw can be exploited by unauthenticated attackers to read arbitrary files on vulnerable devices. The US-based backup and ransomware recovery software vendor silently patched the security flaw with the release of…

    Read More »
  • Blog
    digitpatrox2 weeks ago
    37

    CISA issues warning over Medusa ransomware after 300 victims from critical sectors impacted

    CISA has issued an alert over ongoing activity linked to the Medusa ransomware as a service (RaaS) group, warning it has impacted hundreds of critical organizations. The agency issued a joint advisory alongside the FBI and the Multi-State Information Sharing and Analysis Center (MS-ISAC), stating that as of February 2025 Medusa developers and affiliates had hit over 300 victims in…

    Read More »
  • Blog
    digitpatrox3 weeks ago
    44

    DHS says CISA will not stop monitoring Russian cyber threats

    The US Cybersecurity and Infrastructure Security Agency says that media reports about it being directed to no longer follow or report on Russian cyber activity are untrue, and its mission remains unchanged. “CISA’s mission is to defend against all cyber threats to U.S. Critical Infrastructure, including from Russia,” the US cyber agency posted to X. “There has been no change in…

    Read More »
  • Blog
    digitpatrox3 weeks ago
    42

    CISA tags Windows, Cisco vulnerabilities as actively exploited

    CISA has warned US federal agencies to secure their systems against attacks exploiting vulnerabilities in Cisco and Windows systems. While the cybersecurity agency has tagged these flaws as actively exploited in the wild, it has yet to provide specific details regarding this malicious activity and who is behind it. The first flaw (tracked as CVE-2023-20118) enables attackers to execute arbitrary…

    Read More »
  • Blog
    digitpatroxFebruary 22, 2025
    53

    CISA flags Craft CMS code injection flaw as exploited in attacks

    The U.S. Cybersecurity & Infrastructure Security Agency (CISA) warns that a Craft CMS remote code execution flaw is being exploited in attacks. The flaw is tracked as CVE-2025-23209 and is a high severity (CVSS v3 score: 8.0)  code injection (RCE) vulnerability impacting Craft CMS versions 4 and 5. Craft CMS is a content management system (CMS) used for building websites…

    Read More »
  • Blog
    digitpatroxFebruary 6, 2025
    64

    CISA Adds Four Vulnerabilities to Catalog for Federal Enterprise

    Welcome. Tell us a little bit about you. This will help us provide you with customized content. First Name Last Name Job Title Company Name Company Size Select a size 1 – 4 5 – 9 10 – 24 25 – 49 50 – 99 100 – 249 250 – 499 500 – 999 1000 – 4999 5000 – 9999…

    Read More »
  • Blog
    digitpatroxFebruary 5, 2025
    61

    CISA orders agencies to patch Linux kernel bug exploited in attacks

    ​CISA has ordered federal agencies to secure their systems within three weeks against a high-severity Linux kernel flaw actively exploited in attacks. Tracked as CVE-2024-53104, the security bug was first introduced in kernel version 2.6.26 and was patched by Google for Android users on Monday. “There are indications that CVE-2024-53104 may be under limited, targeted exploitation,” the Android February 2025…

    Read More »
  • Blog
    digitpatroxJanuary 16, 2025
    66

    CISA shares guidance for Microsoft expanded logging capabilities

    ​CISA shared guidance for government agencies and enterprises on using expanded cloud logs in their Microsoft 365 tenants as part of their forensic and compliance investigations. As the cybersecurity agency explained, these newly introduced Microsoft Purview Audit (Standard) logging capabilities support enterprise cybersecurity operations by providing access to information on critical events such as mail sent, mail accessed, and user…

    Read More »
  • Blog
    digitpatroxJanuary 14, 2025
    89

    CISA orders agencies to patch BeyondTrust bug exploited in attacks

    ​CISA has tagged a command injection vulnerability (CVE-2024-12686) in BeyondTrust’s Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks. As mandated by the Binding Operational Directive (BOD) 22-01, after being added to CISA’s Known Exploited Vulnerabilities catalog, U.S. federal agencies must secure their networks against ongoing attacks targeting the flaw within three weeks by February 3.…

    Read More »
  • Blog
    digitpatroxJanuary 7, 2025
    88

    CISA warns of critical Oracle, Mitel flaws exploited in attacks

    CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. The cybersecurity agency added a critical path traversal vulnerability (CVE-2024-41713) found in the NuPoint Unified Messaging (NPM) component Mitel’s MiCollab unified communications platform to its Known Exploited Vulnerabilities Catalog. This security bug allows…

    Read More »
Load More
Back to top button
close