Tag Archives: critical

ACSC and CISA Release Business Continuity in a Box

ACSC and CISA Release Business Continuity in a Box 11/13/2023 10:00 AM EST Today, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and CISA released Business Continuity in a Box. Business Continuity in a Box, developed by ACSC with contributions from CISA, assists organizations with swiftly and securely standing up critical business functions …

Continue reading “ACSC and CISA Release Business Continuity in a Box”

Oracle Releases October 2023 Critical Patch Update Advisory

Oracle Releases October 2023 Critical Patch Update Advisory 10/19/2023 08:00 AM EDT Oracle has released its Critical Patch Update Advisory for October 2023 to address 387 vulnerabilities across multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the …

Continue reading “Oracle Releases October 2023 Critical Patch Update Advisory”

Oracle Releases July 2022 Critical Patch Update

Oracle Releases July 2022 Critical Patch Update 07/20/2022 02:57 PM EDT Original release date: July 20, 2022 | Last revised: July 21, 2022 Oracle has released its Critical Patch Update for July 2022 to address 349 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected …

Continue reading “Oracle Releases July 2022 Critical Patch Update”

Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure

Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure 04/20/2022 10:00 PM EDT Original release date: April 20, 2022 The cybersecurity authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom have released a joint Cybersecurity Advisory (CSA) to warn organizations that Russia’s invasion of Ukraine could expose organizations both within and beyond …

Continue reading “Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure”

Oracle Releases April 2022 Critical Patch Update

Oracle Releases April 2022 Critical Patch Update 04/19/2022 06:20 PM EDT Original release date: April 19, 2022 Oracle has released its Critical Patch Update for April 2022 to address 520 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.  CISA encourages users and administrators …

Continue reading “Oracle Releases April 2022 Critical Patch Update”

Guidance on Sharing Cyber Incident Information

Guidance on Sharing Cyber Incident Information 04/07/2022 04:53 PM EDT Original release date: April 7, 2022 CISA’s Sharing Cyber Event Information Fact Sheet provides our stakeholders with clear guidance and information about what to share, who should share, and how to share information about unusual cyber incidents or activity.   CISA uses this information from …

Continue reading “Guidance on Sharing Cyber Incident Information”

Russian State-Sponsored Cyber Actors Access Network Misconfigured with Default MFA Protocols

03/15/2022 10:00 AM EDT Original release date: March 15, 2022 CISA and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory that details how Russian state-sponsored cyber actors accessed a network with misconfigured default multifactor authentication (MFA) protocols. The actors then exploited a critical Windows Print Spooler vulnerability, “PrintNightmare” (CVE-2021-34527), to run arbitrary …

Continue reading “Russian State-Sponsored Cyber Actors Access Network Misconfigured with Default MFA Protocols”

CISA Insights: Foreign Influence Operations Targeting Critical Infrastructure

CISA Insights: Foreign Influence Operations Targeting Critical Infrastructure 02/18/2022 05:23 PM EST Original release date: February 18, 2022 CISA has released CISA Insights: Preparing for and Mitigating Foreign Influence Operations Targeting Critical Infrastructure, which provides proactive steps organizations can take to assess and mitigate risks from information manipulation. Malicious actors may use tactics—such as misinformation, …

Continue reading “CISA Insights: Foreign Influence Operations Targeting Critical Infrastructure”

Critical Vulnerabilities Affecting SAP Applications Employing Internet Communication Manager (ICM)

Critical Vulnerabilities Affecting SAP Applications Employing Internet Communication Manager (ICM) 02/08/2022 09:00 AM EST Original release date: February 8, 2022 On February 8, 2022, SAP released security updates to address vulnerabilities affecting multiple products, including critical vulnerabilities affecting SAP applications using SAP Internet Communication Manager (ICM). SAP applications help organizations manage critical business processes—such as …

Continue reading “Critical Vulnerabilities Affecting SAP Applications Employing Internet Communication Manager (ICM)”

Oracle Releases January 2022 Critical Patch Update

Oracle Releases January 2022 Critical Patch Update 01/18/2022 08:54 AM EST Original release date: January 18, 2022 Oracle has released its Critical Patch Update for January 2022 to address 497 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to …

Continue reading “Oracle Releases January 2022 Critical Patch Update”