Tag: CISA

Critical Adobe ColdFusion Flaw Added to CISA’s Exploited Vulnerability Catalog
News

Critical Adobe ColdFusion Flaw Added to CISA’s Exploited Vulnerability Catalog

Based on proof of active exploitation, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a major security issue in Adobe ColdFusion to its list of known exploited vulnerabilities (KEV). A deserialization flaw in Adobe ColdFusion 2018 (Update 15 and earlier) and ColdFusion 2021 (Update 5 and earlier) could lead to arbitrary code execution in the context of the current user without requiring any interaction. This vulnerability is categorised as CVE-2023-26359 (CVSS score: 9.8). Dererialization, also known as unmarshaling, is the act of putting an object or data structure back together from a byte stream. However, if it's carried out without first verifying the source or cleaning its contents, it may have unanticipated effects like read more Critical Adobe Cold...
CISA Adds Microsoft .NET Vulnerability to KEV Catalog Due to Active Exploitation
News

CISA Adds Microsoft .NET Vulnerability to KEV Catalog Due to Active Exploitation

The United States Cybersecurity and Infrastructure Security Agency (CISA) has added a newly patched security hole in Microsoft's.NET and Visual Studio products to its list of Known Exploited Vulnerabilities (KEV), citing active exploitation. The high-severity bug, identified as CVE-2023-38180 (CVSS score: 7.5), is related to a situation of denial-of-service (DoS) affecting.NET and Visual Studio. Microsoft fixed it as part of their August 2023 Patch Tuesday updates, which were released earlier this week, marking it with a "Exploitation More Likely" evaluation. While the particular nature of the exploitation is unknown, Microsoft has confirmed the existence read more CISA Adds Microsoft .NET Vulnerability to KEV Catalog Due to Active Exploitation. Stay informed with the best cyb...
CISA Asks Manufacturers to Prioritize Cybersecurity in Product Design
News

CISA Asks Manufacturers to Prioritize Cybersecurity in Product Design

A new set of guidelines has been jointly released by several cybersecurity organizations from around the world to assist manufacturers in giving cybersecurity practices priority while building products. The Federal Bureau of Investigation (FBI), the National Security Agency (NSA), the US Cybersecurity and Infrastructure Security Agency (CISA), and the cybersecurity agencies of Australia, Canada, the UK, Germany, the Netherlands, and New Zealand all contributed to the creation of the document. Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Security-by-Design and -Default, the guidance's title, was released on Thursday and outlines key principles in addition to offering specific technical advice read more CISA Asks Manufacturers to Prioritize Cybersecurity i...
CISA Unveils Ransomware Notification Initiative
News

CISA Unveils Ransomware Notification Initiative

A new initiative to help businesses swiftly patch vulnerabilities targeted by ransomware attackers has been revealed by the Joint Cyber Defense Collaboration (JCDC) and the US Cybersecurity and Infrastructure Security Agency (CISA). Businesses might potentially drive out threat actors by receiving early alerts from the Pre-Ransomware Notification Initiative before they can encrypt data and systems and demand a ransom in exchange for access. Since January 2023, CISA has alerted more than 60 institutions about early-stage ransomware incursions using its proactive cyber protection capacity read more CISA Unveils Ransomware Notification Initiative. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threa...
CISA Creates New Ransomware Vulnerability Warning Program
News

CISA Creates New Ransomware Vulnerability Warning Program

The launch of a new Ransomware Vulnerability Warning Pilot (RVWP) initiative was announced on Monday by the US Cybersecurity and Infrastructure Security Agency (CISA). In response to the Joint Ransomware Task Force's (JRTF) coordination of the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), the RVWP will see CISA evaluate holes frequently connected to known ransomware exploitation. In order to enable mitigation prior to a ransomware incident, the Agency will alert key infrastructure entities after discovering these vulnerabilities read more CISA Creates New Ransomware Vulnerability Warning Program. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and so...
CISA Warns Against Royal Ransomware in New Advisory
News

CISA Warns Against Royal Ransomware in New Advisory

Against the Royal Ransomware organization, the US Cybersecurity and Infrastructure Security Agency (CISA) has released a new alert warning system. The paper, which was made public on Thursday in partnership with the FBI as part of the Agency's #StopRansomware campaign, lists indications of compromise (IOCs) and strategies, methods, and procedures (TTPs) related to Various ransomware variants. Since September 2022, recent hostile behavior by threat actors using a specific malware read more CISA Warns Against Royal Ransomware in New Advisory. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.
CISA Shares Advice to Improve Networks Monitoring and Hardening
News

CISA Shares Advice to Improve Networks Monitoring and Hardening

The US Cybersecurity and Infrastructure Security Agency has released new guidelines to assist network defenders in strengthening their system monitoring and hardening efforts (CISA). The suggestions are the result of a red team assessment (RTA) CISA that was carried out in 2022 at the request of a sizable critical infrastructure company with numerous geographically dispersed buildings, which must remain unidentified. The team eventually got access to systems close to the organization's sensitive business systems (SBSs) after gaining persistent access to the organization's network read more CISA Shares Advice to Improve Networks Monitoring and Hardening. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the&nbs...
CISA Calls For Increased Vigilance One Year After Ukraine’s Russian Invasion
Risk, Security

CISA Calls For Increased Vigilance One Year After Ukraine’s Russian Invasion

Nations' defense forces were forewarned yesterday against disruptive and defacement attacks by the US Cybersecurity and Infrastructure Security Agency (CISA). This, the agency suggested on Thursday, might result from efforts to cause social unrest and disorder on the anniversary of Russia's invasion of Ukraine in 2022. According to the blog post, "CISA maintains public cybersecurity services, including Shields Up, in response to the increased geopolitical tensions caused by Russia's full-scale invasion of Ukraine." Moving forward, the sector will see more cyber activity read more about CISA Calls For Increased Vigilance One Year After Ukraine Russian Invasion. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage ...
New ESXiArgs Ransomware Variant Emerges After CISA Releases Decryptor Tool
Risk, Security

New ESXiArgs Ransomware Variant Emerges After CISA Releases Decryptor Tool

The threat actors have responded with an upgraded version of ESXiArgs ransomware that encrypts more data after the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued a decryptor for affected victims to recover from ESXiArgs ransomware attacks. A system administrator posted information on the new variant on an online forum where another user said that files greater than 128 MB will have 50% of their data encrypted, making the recovery process more difficult. Another significant modification is the removal of the Bitcoin address from the ransom message read the complete article New ESXiArgs Ransomware Variant Emerges After CISA Releases Decryptor Tool. Stay informed and stay ahead of the game with the latest cybersecurity news and trends at ReconBee.com.
CISA Releases Recovery Tool for VMware Ransomware Victims
News

CISA Releases Recovery Tool for VMware Ransomware Victims

A new script has been released by the US Cybersecurity and Infrastructure Security Agency (CISA) to aid ransomware victims in recovering any VMware virtual machines (VMs) affected by a recent worldwide attack. Based on a Monday "internet-wide" scanning attempt, ransomware payment tracker Ransomwhere believed there were 3800 victims. It claimed that four payments totaling $88,000 had been paid, however this certainly understates the size of the effort. According to early reports from national CERTs, the threat actors responsible for it are using CVE-2021-21974 as a backdoor to execute remote code on VMware's ESXi hypervisors by causing a heap-overflow vulnerability in OpenSLP read the complete article CISA Releases Recovery Tool for VMware Ransomware Victims. With ReconBee.com St...