Threat Actors Deploy LummaC2 Malware to Exfiltrate Sensitive Data from Organi...
Tuesday, May 20, 2025

Summary The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint advisory to disseminate known tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with threat actors deploying the Lumma... .. read more..

Russian GRU Targeting Western Logistics Entities and Technology Companies
Monday, May 12, 2025

Executive Summary This joint cybersecurity advisory (CSA) highlights a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies. This includes those involved in the coordination, transport, and delivery of foreign assistance to Ukraine. Since 2022, West... .. read more..

Fast Flux: A National Security Threat
Tuesday, April 1, 2025

Executive summary Many networks have a gap in their defenses for detecting and blocking a malicious technique known as “fast flux.” This technique poses a significant threat to national security, enabling malicious cyber actors to consistently evade detection. Malicious cyber actors, including cy... .. read more..

#StopRansomware: Medusa Ransomware
Tuesday, March 11, 2025

Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders detailing various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniq... .. read more..

#StopRansomware: Ghost (Cring) Ransomware
Wednesday, February 19, 2025

Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techn... .. read more..

Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
Wednesday, January 15, 2025

Note:  The CVEs in this advisory are unrelated to vulnerabilities (CVE-2025-0282 and CVE-2025-0283) in Ivanti’s Connect Secure, Policy Secure and ZTA Gateways. For more information on mitigating CVE -2025-0282 and CVE-2025-0283, see Ivanti Releases Security Updates for Connect Secure, Policy... .. read more..

2023 Top Routinely Exploited Vulnerabilities
Friday, November 8, 2024

Summary The following cybersecurity agencies coauthored this joint Cybersecurity Advisory (hereafter collectively referred to as the authoring agencies): United States: The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and National Security Ag... .. read more..

Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises ...
Monday, September 30, 2024

Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Communications Security Establishment Canada (CSE), the Australian Federal Police (AFP), and Australian Signals Directorate's Australian Cyber Se... .. read more..

Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Cr...
Friday, August 2, 2024

EXECUTIVE SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) conducted a red team assessment (RTA) at the request of a critical infrastructure organization. During RTAs, CISA’s red team simulates real-world malicious cyber operations to assess an organization’s cybersecurity dete... .. read more..

Multiple Vulnerabilities in Mozilla Firefox Could Allow for Arbitrary Code Ex...
Wednesday, January 27, 2016

... .. read more..

Multiple Vulnerabilities in Magento eCommerce Platform Could Allow Remote Cod...
Tuesday, January 26, 2016

... .. read more..

Vulnerability in AMX Harman Professional Devices Could Allow Unauthorized Rem...
Monday, January 25, 2016

... .. read more..

Vulnerability in Fortinet FortiOS Could Allow Unauthorized Remote Access
Monday, January 25, 2016

... .. read more..

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Exec...
Thursday, January 21, 2016

... .. read more..

Multiple Vulnerabilities in PHP Could Allow Arbitrary Code Execution
Thursday, January 21, 2016

... .. read more..

Multiple Vulnerabilities in Apple Products Could Allow Arbitrary Code Execution
Wednesday, January 20, 2016

... .. read more..

Oracle Quarterly Critical Patches Issued January 19, 2016
Tuesday, January 19, 2016

... .. read more..

Vulnerability in Microsoft Silverlight Could Allow Remote Code Execution (MS1...
Friday, January 15, 2016

... .. read more..

Multiple Vulnerabilities in Cisco Products Could Allow for Unauthenticated, R...
Thursday, January 14, 2016

... .. read more..

Multiple Vulnerabilities in Microsoft Office Could Allow Remote Code Executio...
Tuesday, January 12, 2016

... .. read more..

Multiple Vulnerabilities in Adobe Acrobat and Adobe Reader Could Allow for Re...
Tuesday, January 12, 2016

... .. read more..

Vulnerabilities in Microsoft Windows Could Allow Remote Code Execution (MS16-...
Tuesday, January 12, 2016

... .. read more..

Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execut...
Tuesday, January 12, 2016

... .. read more..

A Vulnerability in VBScript Scripting Engine Could Allow for Remote Code Exec...
Tuesday, January 12, 2016

... .. read more..

Cumulative Security Update for Microsoft Edge (MS16-002)
Tuesday, January 12, 2016

... .. read more..

Cumulative Security Update for Internet Explorer (MS16-001)
Tuesday, January 12, 2016

... .. read more..

Multiple Vulnerabilities in Apple QuickTime Could Allow Arbitrary Code Execution
Friday, January 8, 2016

... .. read more..

Multiple Vulnerabilities in Google Android Could Allow for Remote Code Execution
Tuesday, January 5, 2016

... .. read more..

Multiple Vulnerabilities in Adobe Flash Player and AIR Could Allow Remote Cod...
Monday, December 28, 2015

... .. read more..

Multiple vulnerabilities in Joomla Could Allow Arbitrary Code Execution
Wednesday, December 23, 2015

... .. read more..

Multiple Vulnerabilities in Juniper ScreenOS Could Allow Unauthorized, Remote...
Tuesday, December 22, 2015

... .. read more..

Vulnerability in Apache Commons Collections Could Allow Arbitrary Code Execution
Tuesday, December 22, 2015

... .. read more..

Vulnerability in FireEye Products Could Allow for Remote Code Execution
Thursday, December 17, 2015

... .. read more..

Vulnerability in Joomla Could Allow Remote Code Execution
Tuesday, December 15, 2015

... .. read more..

Vulnerability in Cisco Products Could Allow Remote Code Execution
Tuesday, December 15, 2015

... .. read more..

Multiple Vulnerabilities in Apple Products Could Allow Remote Code Execution
Tuesday, December 8, 2015

... .. read more..

Multiple Vulnerabilities in Adobe Flash Player Could Allow Remote Code Execut...
Tuesday, December 8, 2015

... .. read more..

Multiple Vulnerabilities in Windows Media Center Could Allow Remote Code Exec...
Tuesday, December 8, 2015

... .. read more..

Multiple Vulnerabilities in Microsoft Office Could Allow Remote Code Executio...
Tuesday, December 8, 2015

... .. read more..

Vulnerability in Microsoft Uniscribe Could Allow Remote Code Execution (MS15-...
Tuesday, December 8, 2015

... .. read more..

Multiple Vulnerabilities in Microsoft Silverlight Could Allow Remote Code Exe...
Tuesday, December 8, 2015

... .. read more..

Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execu...
Tuesday, December 8, 2015

... .. read more..

Vulnerability in Microsoft DNS Server Could Allow Remote Code Execution (MS15...
Tuesday, December 8, 2015

... .. read more..

Cumulative Security Update for Microsoft Edge (MS15-125)
Tuesday, December 8, 2015

... .. read more..

Cumulative Security Update for Internet Explorer (MS15-124)
Tuesday, December 8, 2015

... .. read more..

Multiple Vulnerabilities in Adobe Flash Player Could Allow for Remote Code Ex...
Tuesday, November 10, 2015

... .. read more..

Multiple Vulnerabilities in Microsoft Office Could Allow Remote Code Executio...
Tuesday, November 10, 2015

... .. read more..

Vulnerabilities in Microsoft Windows Could Allow Remote Code Execution (MS15-...
Tuesday, November 10, 2015

... .. read more..

Vulnerability in Microsoft Windows Journal Could Allow Remote Code Execution ...
Tuesday, November 10, 2015

... .. read more..

Cumulative Security Update for Microsoft Edge (MS15-113)
Tuesday, November 10, 2015

... .. read more..

Powered by Feed Informer