Security Advisories

Please see Security Advisories for the week ending March 11, 2021 FBI Releases Indicators of Compromise for RagnarLocker Ransomware Security Advisory on Conti Ransomware Palo Alto Networks Security Advisories – March 2022 CISA Releases Security Advisory on PTC Axeda Agent and Desktop Server CISA Adds 11 Known Exploited Vulnerabilities to Catalog Mozilla Releases Security Updates for Multiple Products Microsoft Releases March 2022 Security Updates SAP Releases March 2022 Security Updates _______________________________ FBI… Read More

Please see Security Advisories for the week ending March 4, 2022 NSA Releases Network Infrastructure Security Guidance CISA Adds 95 Known Exploited Vulnerabilities to Catalog Cisco Releases Security Updates for Multiple Products Google Releases Security Updates for Chrome _______________________________ NSA Releases Network Infrastructure Security Guidance Situation The National Security Agency (NSA) has released a new Cybersecurity Technical Report (CTR) on Network Infrastructure Security Guidance. Problem The cybersecurity report presents best practices… Read More

Please see Security Advisories for the week ending February 25, 2021 • CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine • CISA Releases Joint Cybersecurity Advisory on The MuddyWater APT Conducting Malicious Cyber Operations • Mozilla Releases Security Update for Mozilla VPN • Cisco Releases Security Updates for Multiple Products • CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine… Read More

Please see Security Advisories for the week ending February 18, 2021 CISA Insights Released on Foreign Influence Operations Targeting Critical Infrastructure NSA Releases Best Practices for Selecting Cisco Password Types Drupal Releases Security Updates Cisco Has Released Security Updates for Their Email Security Appliance Mozilla Releases Security Update for Thunderbird Russian State-Sponsored Actors Target Cleared Defense Contractor Networks VMware Releases Security Updates for Multiple Products Google Releases Security Updates for Chrome CISA… Read More

Special Security Advisory: FBI and USSS Release Advisory on BlackByte Ransomware _______________________________ Situation The federal Bureau of Investigation and the United States Secret Service (USSS) have released a joint Cybersecurity Advisory (CSA) identifying indicators or compromise associated with Black Byte ransomware. Problem BlackByte is a Ransomware-as-a-service group that encrypts files on compromised Windows host systems, including the physical and virtual servers. Implication  Once they are in, threat actors can deploy tools… Read More

Please see Security Advisories for the week ending February 11, 2022 CISA Adds 15 Known Exploited Vulnerabilities to its Catalog Palo Alto Networks Security Advisories – February 2022 Citrix Releases Security Updates for Hypervisor Mozilla Releases Security Updates for Firefox and Firefox ESR Critical Vulnerabilities Affecting SAP Applications Employing Internet Communication Manager (ICM) Microsoft Releases February 2022 Security Updates FBI Releases Indicators of Compromise Associated with LockBit 2.0 Ransomware _______________________________ CISA Adds 15… Read More

Special Security Advisory: 2021 Trends Show Increased Globalized Threat of Ransomware _______________________________ Situation CISA, the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), the Australian Cyber Security Centre (ACSC), and the United Kingdom’s National Cyber Security Centre (NCSC-UK) have released a joint Cybersecurity Advisory (CSA) highlighting a global increase in sophisticated, high-impact, ransomware incidents against critical infrastructure organizations in 2021. Problem Cybersecurity authorities in the United States, Australia, and the… Read More

Please see Security Advisories for the week ending February 4, 2022 Major vulnerability found in open-source dev tool for Kubernetes CISA Releases Security Advisory for Airspan Networks Mimosa Google Releases Security Updates for Chrome Cisco Releases Security Updates for RV Series Routers Samba Releases Security Updates _______________________________ Major vulnerability found in open-source dev tool for Kubernetes Situation Researchers today disclosed a zero-day vulnerability in Argo CD, an open source developer tool… Read More

Please see Security Advisories for the week ending January 28, 2022 McAfee Releases Security Update for McAfee Agent for Windows FBI Releases PIN on Iranian Cyber Group Emennet Pasargad CISA Publishes Infographic on Network Security Through Segmentation _______________________________ McAfee Releases Security Update for McAfee Agent for Windows Situation McAfee has released McAfee Agent for Windows version 5.7.5, which addresses vulnerabilities CVE-2021-31854 and CVE-2022-0166. Problem Vulnerabilities were found in McAfee Agent that… Read More

CRITICAL Security Advisory: Apple released security updates for all of its hardware products, including Apple TV, Apple Watch, and Mac Situation The Cybersecurity and Infrastructure Security Agency (CISA) has issued a new security notice that Apple has released security updates for multiple products, including MacOS, iOS, iPad OS, tvOS, and WatchOS Problem Threat Actors are exploiting unpatched systems to: Execute arbitrary code Gain root-level privileges Access restricted files on the vulnerable… Read More