Security Advisories

CISA and FBI Release Joint Advisory in Response to Active Exploitation of PaperCut Vulnerability Palo Alto Networks Security Advisories – May 2023 Microsoft Releases May 2023 Security Updates Mozilla Releases Security Advisories for Multiple Products CISA and Partners Disclose Snake Malware Threat From Russian Cyber Actors CISA and Partners Release BianLian Ransomware Cybersecurity Advisory CISA and FBI Release Joint Advisory in Response to Active Exploitation of PaperCut Vulnerability Situation: According… Read More

CRITICAL: APT28 Exploits Known Vulnerability To Carry Out Reconnaissance and Deploy Malware on Cisco Routers Cisco Releases Security Advisories for Multiple Products Oracle Releases Security Updates VMware Releases Security Update for Aria Operations for Logs Drupal Releases Security Advisory to Address Vulnerability in Drupal Core CRITICAL: APT28 Exploits Known Vulnerability To Carry Out Reconnaissance and Deploy Malware on Cisco Routers Situation: NCSC, NSA, CISA, and FBI have released a joint… Read More

Palo Alto Networks Security Advisories – April 2023 Fortinet Releases April 2023 Vulnerability Advisories Adobe Releases Security Updates for Multiple Products Microsoft Releases April 2023 Security Updates Apple Releases Security Updates for Multiple Products Mozilla Releases Security Advisories for Multiple Products _______________________________ Palo Alto Networks Security Advisories – April 2023 Situation: Palo Alto Networks has published three new Security Advisories regarding vulnerabilities affecting their PAN-OS software and GlobalProtect App. Problem:… Read More

Mozilla Releases Security Update for Thunderbird 102.9.1 Samba Releases Security Updates for Multiple Versions of Samba Supply Chain Attack Against 3CXDesktopApp Apple Releases Security Updates for Multiple Products _______________________________ Mozilla Releases Security Update for Thunderbird 102.9.1 Situation: Mozilla has released a security update to address vulnerabilities in Thunderbird 102.9.1. Problem: An attacker could exploit some of these vulnerabilities to take control of an affected system. Implication: If not addressed, an… Read More

  Cisco Releases Security Advisories for Multiple Products JCDC Cultivates Pre-Ransomware Notification Capability Untitled Goose Tool Aids Hunt and Incident Response in Azure, Azure Active Directory, and Microsoft 365 Environments CISA and NSA Release Enduring Security Framework Guidance on Identity and Access Management _______________________________ Cisco Releases Security Advisories for Multiple Products Situation: Cisco has released security advisories for vulnerabilities affecting multiple Cisco products. Problem: A remote cyber threat actor could… Read More

FBI, CISA, and MS-ISAC Release #StopRansomware: LockBit 3.0 Microsoft Releases March 2023 Security Updates Adobe Releases Security Updates for Multiple Products Mozilla Releases Security Updates for Firefox 111 and Firefox ESR 102.9 CISA Announces Ransomware Vulnerability Warning Pilot _______________________________ FBI, CISA, and MS-ISAC Release #StopRansomware: LockBit 3.0 Situation: The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing & Analysis Center (MS-ISAC)… Read More

  CISA Releases Decider Tool to Help with MITRE ATT&CK Mapping LastPass Breach _______________________________ CISA Releases Decider Tool to Help with MITRE ATT&CK Mapping Situation: CISA released Decider, a tool for mapping adversary behavior to the MITRE ATT&CK® framework. A companion to the recently updated Best Practices for MITRE ATT&CK® Mapping guide, Decider helps network defenders, analysts, and researchers quickly and accurately map adversary tactics, techniques, and procedures (TTPs) to… Read More

VMware Releases Security Updates for Carbon Black App Control Cisco Releases Security Advisories for Multiple Products CISA Urges Increased Vigilance One Year After Russia’s Invasion of Ukraine _______________________________ VMware Releases Security Updates for Carbon Black App Control Situation: VMware has released security updates to address a vulnerability in Carbon Black App Control. Problem: Carbon Black App Control has multiple vulnerabilities that can cause a malicious actor to be able to… Read More

Mozilla Releases Security Updates for Firefox 110 and Firefox ESR Cisco Releases Security Advisories for Multiple Products Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops Microsoft Releases February 2023 Security Updates Apple Releases Security Updates for Multiple Products _______________________________ Mozilla Releases Security Updates for Firefox 110 and Firefox ESR Situation: Mozilla has released security updates to address vulnerabilities in Firefox 110 and Firefox ESR. Problem: Mozilla has… Read More

Drupal Releases Security Update to Address a Vulnerability in Apigee Edge Cisco Releases Security Advisories for Multiple Products VMware Releases Security Update for VMware vRealize Operations _______________________________ Drupal Releases Security Update to Address a Vulnerability in Apigee Edge Situation: Drupal released a security update to address a vulnerability affecting the Apigee Edge module for Drupal 9.x. Problem: The Apigee Edge module allows connecting a Drupal site to Apigee X /… Read More