Cisco Releases Security Updates for Multiple Products 09/30/2022 12:17 PM EDT Original release date: September 30, 2022 Cisco has released security updates for vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing high and low severity vulnerabilities, see the Cisco Security Advisories page.… Continue reading Cisco Releases Security Updates for Multiple Products
Month: September 2022
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog 09/30/2022 10:14 AM EDT Original release date: September 30, 2022 CISA has added three vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.… Continue reading CISA Adds Three Known Exploited Vulnerabilities to Catalog
VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere
VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere 09/29/2022 05:13 PM EDT Original release date: September 29, 2022 VMWare has released Protecting vSphere From Specialized Malware, addressing malware artifacts known as VirtualPITA (ESXi & Linux), VirtualPIE (ESXi), and VirtualGATE (Windows), which are used to exploit and gain persistent access to instances of… Continue reading VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere
CISA Publishes User Guide to Prepare for Nov. 1 Move to TLP 2.0
CISA Publishes User Guide to Prepare for Nov. 1 Move to TLP 2.0 09/29/2022 12:15 PM EDT Original release date: September 29, 2022 CISA has published its Traffic Light Protocol 2.0 User Guide and Traffic Light Protocol: Moving to Version 2.0 fact sheet in preparation for its November 1, 2022 move from Traffic Light Protocol (TLP)… Continue reading CISA Publishes User Guide to Prepare for Nov. 1 Move to TLP 2.0
CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories 09/28/2022 12:52 PM EDT Original release date: September 28, 2022 | Last revised: September 29, 2022 CISA has released six (6) Industrial Control Systems (ICS) advisories on September 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and… Continue reading CISA Releases Six Industrial Control Systems Advisories
Vulnerability Summary for the Week of September 19, 2022
Vulnerability Summary for the Week of September 19, 2022 09/26/2022 10:09 AM EDT Original release date: September 26, 2022 | Last revised: September 27, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info There were no high vulnerabilities recorded this week. Back to top Medium Vulnerabilities PrimaryVendor —… Continue reading Vulnerability Summary for the Week of September 19, 2022
CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories 09/26/2022 02:16 PM EDT Original release date: September 26, 2022 | Last revised: September 27, 2022 CISA has released three (3) Industrial Control Systems (ICS) advisories on September 27th, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and… Continue reading CISA Releases Three Industrial Control Systems Advisories
CISA Has Added One Known Exploited Vulnerability to Catalog
CISA Has Added One Known Exploited Vulnerability to Catalog 09/23/2022 02:38 PM EDT Original release date: September 23, 2022 CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to… Continue reading CISA Has Added One Known Exploited Vulnerability to Catalog
CISA Has Added One Known Exploited Vulnerability to Catalog
CISA Has Added One Known Exploited Vulnerability to Catalog 09/22/2022 02:38 PM EDT Original release date: September 22, 2022 CISA has added one new vulnerability to it’s Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the… Continue reading CISA Has Added One Known Exploited Vulnerability to Catalog
CISA and NSA Publish Joint Cybersecurity Advisory on Control System Defense
CISA and NSA Publish Joint Cybersecurity Advisory on Control System Defense 09/22/2022 10:59 AM EDT Original release date: September 22, 2022 CISA and the National Security Agency (NSA) have published a joint cybersecurity advisory about control system defense for operational technology (OT) and industrial control systems (ICSs). Control System Defense: Know the Opponent is intended… Continue reading CISA and NSA Publish Joint Cybersecurity Advisory on Control System Defense