Iranian Advanced Persistent Threat Actors Threaten Election-Related Systems
Original release date: October 22, 2020The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are warning that Iranian advanced persistent threat...
View ArticleCisco Releases Security Updates for Multiple Products
Original release date: October 22, 2020Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control...
View ArticleCISA and FBI Release Joint Advisories Regarding Russian and Iranian APT Actors
Original release date: October 22, 2020The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released two joint cybersecurity advisories on...
View ArticleVulnerability Summary for the Week of October 19, 2020
Original release date: October 26, 2020 The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet...
View ArticleMicrosoft Releases Security Update for Edge
Original release date: October 26, 2020Microsoft has released a security update to address vulnerabilities in Edge (Chromium-based). An attacker could exploit some of these vulnerabilities to take...
View ArticleNorth Korean Advanced Persistent Threat Focus: Kimsuky
Original release date: October 27, 2020This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7...
View ArticleRansomware Activity Targeting the Healthcare and Public Health Sector
Original release date: October 28, 2020 | Last revised: October 29, 2020This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the...
View ArticleRansomware Activity Targeting the Healthcare and Public Health Sector
Original release date: October 28, 2020The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the U.S. Department of Health and Human Services (HHS)...
View ArticleCISA and CNMF Identify a New Malware Variant: Zebrocy
Original release date: October 29, 2020Content: The Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Defense (DOD) Cyber National Mission Force (CNMF) have identified a...
View ArticleMicrosoft Warns of Continued Exploitation of CVE-2020-1472
Original release date: October 29, 2020Microsoft has released a blog post on cyber threat actors exploiting CVE-2020-1472, an elevation of privilege vulnerability in Microsoft’s Netlogon. A remote...
View ArticleMAR-10310246-1.v1 – ZEBROCY Backdoor
Original release date: October 29, 2020NotificationThis report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind...
View ArticleIranian Advanced Persistent Threat Actor Identified Obtaining Voter...
Original release date: October 30, 2020 | Last revised: November 3, 2020This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 8 framework. See the...
View ArticleCISA and FBI Release Joint Advisory on Iranian APT Actor Targeting Voter...
Original release date: October 30, 2020The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a joint cybersecurity advisory on an...
View ArticleVulnerability Summary for the Week of October 26, 2020
Original release date: November 2, 2020 The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet...
View ArticleOracle Releases Out-of-Band Security Alert
Original release date: November 2, 2020Oracle has released an out-of-band security alert to address a remote code execution vulnerability—CVE-2020-14750—in Oracle WebLogic Server. A remote attacker can...
View ArticleGoogle Releases Security Updates for Chrome, CVE-2020-16009
Original release date: November 3, 2020Google has released Chrome version 86.0.4240.183 for Windows, Mac, and Linux addressing multiple vulnerabilities, including vulnerability CVE-2020-16009. Exploit...
View ArticleAdobe Releases Security Updates for Acrobat and Reader
Original release date: November 4, 2020Adobe has released security updates to address vulnerabilities in Adobe Acrobat and Reader. An attacker could exploit some of these vulnerabilities to take...
View ArticleCisco Releases Security Updates for Multiple Products
Original release date: November 5, 2020Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control...
View ArticleApple Releases Security Updates for Multiple Products
Original release date: November 6, 2020Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an...
View ArticleVulnerability Summary for the Week of November 2, 2020
Original release date: November 9, 2020 The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet...
View Article