CISA

CISA, FBI Warn of China-Linked Ghost Ransomware Attacks

CISA, FBI Warn of China-Linked Ghost Ransomware Attacks 2025-02-20 at 15:40 By Ionut Arghire CISA and the FBI warn organizations of attacks employing the Ghost (Cring) ransomware, operated by Chinese hackers. The post CISA, FBI Warn of China-Linked Ghost Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source […]

React to this headline:

Loading spinner

CISA, FBI Warn of China-Linked Ghost Ransomware Attacks Read More »

Sean Cairncross is Trump Nominee for National Cyber Director

Sean Cairncross is Trump Nominee for National Cyber Director 2025-02-14 at 17:03 By Ryan Naraine Former RNC official Sean Cairncross has been nominated for the post of National Cyber Director to streamline the US cybersecurity strategy. The post Sean Cairncross is Trump Nominee for National Cyber Director appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Sean Cairncross is Trump Nominee for National Cyber Director Read More »

CISA Updates Known Exploited Vulnerabilities Catalog with Four Critical Issues

CISA Updates Known Exploited Vulnerabilities Catalog with Four Critical Issues 2025-02-13 at 13:49 By daksh sharma In a recent update to its Known Exploited Vulnerabilities Catalog, the Cybersecurity and Infrastructure Security Agency (CISA) has added four security vulnerabilities that are currently under active exploitation. These vulnerabilities span across multiple platforms and pose substantial security risks

React to this headline:

Loading spinner

CISA Updates Known Exploited Vulnerabilities Catalog with Four Critical Issues Read More »

US Cyber Agency Puts Election Security Staffers Who Worked With the States on Leave

US Cyber Agency Puts Election Security Staffers Who Worked With the States on Leave 2025-02-11 at 13:48 By Associated Press Staffers at the nation’s cybersecurity agency whose job is to ensure the security of US elections have been placed on administrative leave. The post US Cyber Agency Puts Election Security Staffers Who Worked With the

React to this headline:

Loading spinner

US Cyber Agency Puts Election Security Staffers Who Worked With the States on Leave Read More »

Patient monitors with backdoor are sending info to China, CISA warns

Patient monitors with backdoor are sending info to China, CISA warns 2025-01-31 at 14:03 By Zeljka Zorz Contec CMS8000, a patient monitor manufactured by a Chinese company, and Epsimed MN-120, which is the same monitor but relabeled, exfiltrate patients’ data to a hard-coded IP address and have a backdoor that can be used to download

React to this headline:

Loading spinner

Patient monitors with backdoor are sending info to China, CISA warns Read More »

CISA, FDA Warn of Dangerous Backdoor in Contec Patient Monitors

CISA, FDA Warn of Dangerous Backdoor in Contec Patient Monitors 2025-01-31 at 13:48 By Ionut Arghire CISA and FDA say Contec patient monitors used in the US contain a backdoor function that could allow remote attackers to tamper with the device. The post CISA, FDA Warn of Dangerous Backdoor in Contec Patient Monitors appeared first

React to this headline:

Loading spinner

CISA, FDA Warn of Dangerous Backdoor in Contec Patient Monitors Read More »

US Cyber Agency’s Future Role in Elections Remains Murky Under the Trump Administration

US Cyber Agency’s Future Role in Elections Remains Murky Under the Trump Administration 2025-01-30 at 16:03 By Associated Press President Donald Trump has yet to name anyone to lead the U.S. Cybersecurity and Infrastructure Security. The post US Cyber Agency’s Future Role in Elections Remains Murky Under the Trump Administration appeared first on SecurityWeek. This

React to this headline:

Loading spinner

US Cyber Agency’s Future Role in Elections Remains Murky Under the Trump Administration Read More »

Eclypsium Eyes Global Expansion with $45 Million Series C Investment

Eclypsium Eyes Global Expansion with $45 Million Series C Investment 2025-01-28 at 18:03 By SecurityWeek News The investment includes equity and debt from new investors Qualcomm Ventures, Pavilion Capital, Singtel Innov8, and Sixty Degree Capital.  The post Eclypsium Eyes Global Expansion with $45 Million Series C Investment appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Eclypsium Eyes Global Expansion with $45 Million Series C Investment Read More »

What 2024 taught us about security vulnerabilties

What 2024 taught us about security vulnerabilties 2025-01-14 at 06:03 By Help Net Security From zero-day exploits to weaknesses in widely used software and hardware, the vulnerabilities uncovered last year underscore threat actors’ tactics and the critical gaps in organizational defenses. This roundup showcases the standout findings from 2024’s cybersecurity reports, highlighting critical risks and

React to this headline:

Loading spinner

What 2024 taught us about security vulnerabilties Read More »

UK domain registry Nominet breached via Ivanti zero-day

UK domain registry Nominet breached via Ivanti zero-day 2025-01-13 at 22:17 By Zeljka Zorz The number of internet-facing Ivanti Connect Secure instances vulnerable to attack via CVE-2025-0282 has fallen from 2,048 to 800 in the last four days, the Shadowserver Foundation shared today. In the meantime, UK domain registry Nominet became the first publicly known

React to this headline:

Loading spinner

UK domain registry Nominet breached via Ivanti zero-day Read More »

Mitel MiCollab, Oracle WebLogic Server vulnerabilities exploited by attackers

Mitel MiCollab, Oracle WebLogic Server vulnerabilities exploited by attackers 2025-01-08 at 14:20 By Zeljka Zorz CISA has added Mitel MiCollab (CVE-2024-41713, CVE-2024-55550) and Oracle WebLogic Server (CVE-2020-2883) vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. The Mitel MiCollab vulnerabilities exploited Mitel MiCollab is a popular enterprise collaboration suite. CVE-2024-41713 and CVE-2024-55550 are both path traversal

React to this headline:

Loading spinner

Mitel MiCollab, Oracle WebLogic Server vulnerabilities exploited by attackers Read More »

CISA says Treasury was the only US agency breached via BeyondTrust

CISA says Treasury was the only US agency breached via BeyondTrust 2025-01-07 at 14:18 By Zeljka Zorz The US Cybersecurity and Infrastructure Security Agency (CISA) has shared on Monday that the Treasury Department was the only US federal agency affected by the recent cybersecurity incident involving compromised BeyondTrust Remote Support SaaS instances. On the same

React to this headline:

Loading spinner

CISA says Treasury was the only US agency breached via BeyondTrust Read More »

A Look at CISA Known Exploited Vulnerabilities in 2024 

A Look at CISA Known Exploited Vulnerabilities in 2024  2024-12-30 at 10:19 By Ashish Khaitan Overview  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added 185 vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog in 2024, as the database grew to 1,238 software and hardware flaws at high risk of cyberattacks.  The agency removed at

React to this headline:

Loading spinner

A Look at CISA Known Exploited Vulnerabilities in 2024  Read More »

CISA: Use Signal or other secure communications app

CISA: Use Signal or other secure communications app 2024-12-20 at 14:57 By Zeljka Zorz In the wake of the widespread compromise of US telecom giants’ networks by Chinese hackers and the FBI advising Americans to use end-to-end encrypted communications, CISA is advising “highly targeted individuals” – senior government officials and politicians – to lock down

React to this headline:

Loading spinner

CISA: Use Signal or other secure communications app Read More »

CISA Recommends Encrypted Messaging Apps as Telecom Security Questioned 

CISA Recommends Encrypted Messaging Apps as Telecom Security Questioned  2024-12-20 at 08:34 By Ashish Khaitan The security of U.S. telecom networks has come under fresh scrutiny in recent months, with the latest example coming this week when the Cybersecurity and Infrastructure Security Agency (CISA) recommended that individuals in need of high security use encrypted messaging

React to this headline:

Loading spinner

CISA Recommends Encrypted Messaging Apps as Telecom Security Questioned  Read More »

CISA orders federal agencies to secure their Microsoft cloud environments

CISA orders federal agencies to secure their Microsoft cloud environments 2024-12-19 at 15:04 By Zeljka Zorz The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a binding operational directive (BOD 25-01) requiring federal civilian agencies to secure their (Microsoft) cloud environments. About the CISA BOD 25-01 directive The Implementing Secure Practices for Cloud Services

React to this headline:

Loading spinner

CISA orders federal agencies to secure their Microsoft cloud environments Read More »

CISA Adds CVE-2024-49138 to the Known Exploited Vulnerabilities Catalog, Urgency for Microsoft Users

CISA Adds CVE-2024-49138 to the Known Exploited Vulnerabilities Catalog, Urgency for Microsoft Users 2024-12-11 at 15:03 By daksh sharma Overview The Cybersecurity and Infrastructure Security Agency (CISA) added a critical vulnerability, CVE-2024-49138, to its Known Exploited Vulnerabilities (KEV) catalog based on evidence that this flaw is being actively exploited. The vulnerability, identified in the Microsoft

React to this headline:

Loading spinner

CISA Adds CVE-2024-49138 to the Known Exploited Vulnerabilities Catalog, Urgency for Microsoft Users Read More »

How to choose secure, verifiable technologies?

How to choose secure, verifiable technologies? 2024-12-06 at 12:16 By Zeljka Zorz The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has published a guidance document titled Choosing Secure and Verifiable Technologies, compiled to assist organizations in making informed decisions when procuring software (proprietary or open source), hardware (e.g., IoT devices), and cloud services

React to this headline:

Loading spinner

How to choose secure, verifiable technologies? Read More »

Vulnerabilities in ICS: A Detailed Analysis of Recent Security Advisories and Threats 

Vulnerabilities in ICS: A Detailed Analysis of Recent Security Advisories and Threats  2024-12-04 at 16:31 By Cyble Overview  The recent Weekly Industrial Control System Vulnerability Intelligence Report from Cyble Research & Intelligence Labs (CRIL) covers the vulnerabilities disclosed by the Cybersecurity and Infrastructure Security Agency (CISA) from November 26, 2024, to December 02, 2024.   The

React to this headline:

Loading spinner

Vulnerabilities in ICS: A Detailed Analysis of Recent Security Advisories and Threats  Read More »

Australia’s ACSC and ASD Team Up with CISA, NSA, FBI, and International Allies to Protect Communications Infrastructure

Australia’s ACSC and ASD Team Up with CISA, NSA, FBI, and International Allies to Protect Communications Infrastructure 2024-12-04 at 16:18 By Cyble Overview  A coalition of cybersecurity agencies, including the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), Australia’s Australian Signals Directorate (ASD), the Australian Cyber

React to this headline:

Loading spinner

Australia’s ACSC and ASD Team Up with CISA, NSA, FBI, and International Allies to Protect Communications Infrastructure Read More »

Scroll to Top