CISA Archives

Vulnerabilities

CISA: Several Old Linux Vulnerabilities Exploited in Attacks

Several old Linux vulnerabilities for which there are no public reports of malicious exploitation have been added to CISA’s KEV catalog.

Eduard KovacsMay 15, 2023

Government

CISA Introduces Secure-by-design and Secure-by-default Development Principles

CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.

Kevin TownsendApril 14, 2023

Ransomware

CISA Gets Proactive With New Pre-Ransomware Alerts

CISA has sent notifications to more than 60 organizations as part of a new initiative to alert entities of early-stage ransomware attacks.

Ionut ArghireMarch 24, 2023

Supply Chain Security

OpenVEX Spec Adds Clarity to Supply Chain Vulnerability Warnings

Chainguard OpenVEX Spec adds clarity to Supply Chain Vulnerability warnings specifications to help software vendors and maintainers communicate precise metadata about the vulnerability status...

Ryan NaraineJanuary 31, 2023

Vulnerabilities

Exploited Control Web Panel Flaw Added to CISA ‘Must-Patch’ List

CISA gave federal agencies a February deadline to patch a critical vulnerability in the CentOS Control Web Panel utility.

Ryan NaraineJanuary 18, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "CISA"

Vulnerabilities

CISA: Several Old Linux Vulnerabilities Exploited in Attacks

Government

CISA Introduces Secure-by-design and Secure-by-default Development Principles

Ransomware

CISA Gets Proactive With New Pre-Ransomware Alerts

Supply Chain Security

OpenVEX Spec Adds Clarity to Supply Chain Vulnerability Warnings

Vulnerabilities

Exploited Control Web Panel Flaw Added to CISA ‘Must-Patch’ List

Featured

Vulnerabilities

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations

Cyberwarfare

Russia Blames US Intelligence for iOS Zero-Click Attacks

Endpoint Security

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards

Vulnerabilities

Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery

ICS/OT

New Russia-Linked CosmicEnergy ICS Malware Could Disrupt Electric Grids

Cyberwarfare

Microsoft Catches Chinese .Gov Hackers Targeting US Critical Infrastructure

Mobile & Wireless

Samsung Smartphone Users Warned of Actively Exploited Vulnerability

Latest News

Artificial Intelligence

Insider Q&A: Artificial Intelligence and Cybersecurity In Military Tech

Malware & Threats

In Other News: Government Use of Spyware, New Industrial Security Tools, Japan Router Hack

Artificial Intelligence

OpenAI Unveils Million-Dollar Cybersecurity Grant Program

Funding/M&A

Galvanick Banks $10 Million for Industrial XDR Technology

Data Breaches

Information of 2.5M People Stolen in Ransomware Attack at Massachusetts Health Insurer

Cyberwarfare

US, South Korea Detail North Korea’s Social Engineering Techniques

Vulnerabilities

High-Severity Vulnerabilities Patched in Splunk Enterprise