CISA – Page 12 – TheCyberThrone

CISA: Top Exploited Vulnerabilities 2021

CISA has published the list of 2021’s top 15 most exploited software vulnerabilities. This joint Cybersecurity Advisory (CSA) was co-authored by cybersecurity agencies of the United States, Australia, Canada, New…

PravinKarthik April 29, 2022

CISA Adds Seven vulnerabilities to Known Exploited Catalog

The U.S. CISA has added seven vulnerabilities to its Known Exploited Vulnerabilities Catalog, including flaws affecting Microsoft, Linux, WSO2, and Jenkins systems According to Binding Operational Directive (BOD) 22-01: Reducing the Significant…

PravinKarthik April 26, 2022

Security

CISA Adds Spring4Shell to its Known Exploited Catalog

Spring4Shell vulnerability (CVE-2022-22965) came to light and it's been a week since the VMware Spring fixed it in new versions of the Spring Framework. There have been reports of scanning, exploit attempts and attempts to deploy a web shell on…

PravinKarthik April 5, 2022

Trend Micro fixes Apex Central Bug

Trend Micro has patched a high severity security flaw, tracked as CVE-2022-26871, in the Apex Central product management console. This is an arbitrary file upload issue, its exploitation could lead to…

PravinKarthik April 2, 2022

CISA Adds 66 Vulnerabilities to Known Exploited Catalog

The U.S. CISA has added 66 vulnerabilities to its Known Exploited Vulnerabilities Catalog. According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities, FCEB agencies…

PravinKarthik March 28, 2022

CISA Adds 15 Vulnerabilities to Known Exploited Catalog

The US CISA announced that it has added 15 vulnerabilities to its Known Exploited Vulnerabilities Catalog. The newly added flaws one affecting SonicWall SonicOS and 14 impacting Microsoft Windows –…

PravinKarthik March 16, 2022

CISA Adds Conti Domains in Block List

The U.S. CISA has updated the alert on Conti ransomware operations, by adding 100 domain names used by the group. The Indicators of Compromise added to the report was provided…

PravinKarthik March 11, 2022

Security

Free Cyber Protection by Striking Team to Vulnerable Industries in USA

Cloudflare, CrowdStrike and Ping Identity Corp are teaming up to form the Critical Infrastructure Defense Project, a project that will provide free cybersecurity services to vulnerable industries. Designed to enhance…

PravinKarthik March 8, 2022