Security Advisories

Please see Security Advisories for the week ending July 23, 2021 Cisco Releases Security Updates in Intersight Virtual Appliance Google Releases Security Updates for Chrome Malware Targeting Pulse Secure Devices Live Phishing Attack Uses New Infection Technique to Deliver Malware Oracle Releases July 2021 Critical Patch Update Joint CISA-FBI Cybersecurity – Advisory Historical Cyber-Intrusion Campaigns Targeting ICS 2021 CWE Top 25 Most Dangerous Software Weaknesses Drupal Releases Security Updates Adobe Releases… Read More

Please see Security Advisories for the week ending July 16, 2021 Microsoft Releases July 2021 Security Updates Cisco Releases Security Updates Google Releases Security Updates for Chrome Juniper Networks Releases Security Updates for Multiple Products Kaseya Ransomware Attack: Guidance and Resources Ransomware Risk in Unpatched, EOL SonicWall SRA and SMA 8.x Products VMware  Releases Security Update Critical ForgeRock Access Management Vulnerability Apache Releases Security Advisory for Tomcat CISA Issues Emergency Directive… Read More

Please see Security Advisories for the week ending July 9, 2021 Cisco Releases Security Updates for Multiple Products Microsoft Releases Out-of-Band Security Updates for PrintNightmare Microsoft’s emergency patch fails to fix critical “PrintNightmare” vulnerability CISA Releases Security Advisory for Philips Vue PAC Products _______________________________ Cisco Releases Security Updates for Multiple Products Situation Cisco has released security updates to address vulnerabilities in multiple Cisco products. Cisco lists CVE-2021-1359 and CVE-2021-1574/1576 with the… Read More

Please see Security Advisories for the week ending July 2, 2021 Critical: Kaseya VSA supply chain ransomware attack Windows PrintNightmare Vulnerability Exploited in the Wild Emergency Palo Alto Networks Content Update NSA-CISA-NCSC-FBI Joint Cybersecurity Advisory on Russian GRU Brute Force Campaign Cisco ASA Bug Now Actively Exploited as PoC Drops CISA’s CSET Tool Sets Sights on Ransomware Threat _______________________________ Critical: Kaseya VSA supply chain ransomware attack Situation The Cybersecurity and Infrastructure Security… Read More

Please see Security Advisories for the week ending June 25, 2021 Critical Palo Alto Networks Vulnerability Found in Cortex XSOAR Cisco ASA Bug Now Actively Exploited as PoC Drops Citrix Releases Security Updates for Hypervisor VMware Releases Security Updates _______________________________ Critical Palo Alto Networks Vulnerability Found in Cortex XSOAR Situation Palo Alto Networks has released a security advisory for Cortex XSOAR 6.1.0 and 6.2.0 due to an improper authorization vulnerability (CVE-2021-3044). Problem… Read More

Please see Security Advisories for the week ending June 18, 2021 Google Releases Security Updates for Chrome Cisco  Releases Security Updates for Multiple  Products Apple Releases Security Updates for iOS 12.5.4 _______________________________ Google Releases Security Updates for Chrome Situation Google has released Chrome version 91.0.4472.114 for Windows, Mac, and Linux. The Stable channel has been updated to 91.0.4472.114 for Windows, Mac and Linux which will roll out over the coming days/weeks…. Read More

Please see Security Advisories for the week ending June 4, 2021 Critical Security Advisory: VMware Releases Security Updates for Critical Vulnerabilities Zero-Day Flaw Actively Exploited in WordPress Fancy Product Designer Plugin Cisco  Releases Security Updates for Multiple Products Mozilla Releases Security Updates for Firefox ________________________________ Critical Security Advisory: VMware Releases Security Updates for Critical Vulnerabilities Situation VMware has released security updates to address multiple vulnerabilities in vCenter Server and Cloud Foundation. VMware… Read More

Critical Security Advisory: VMware Releases Security Updates for Critical Vulnerabilities Situation VMware has released security updates to address multiple vulnerabilities in vCenter Server and Cloud Foundation. VMware is urging vCenter users to update vCenter Server versions 6.5, 6.7, and 7.0 immediately. Problem The most severe of the vulnerabilities that were patched is a remote code execution vulnerability (CVE-2021-21985) found in vSphere Client (HTML5). This vulnerability is due to lack of… Read More

Please see Security Advisories for the week ending May 28, 2021 Microsoft Announces New Campaign from NOBELIUM Joint CISA-FBI Cybersecurity Advisory on Sophisticated Spearphishing Campaign Current Updates on Pulse Connect Secure Apple Releases Security Updates Google Releases Security Updates for the Chrome Browser ________________________________ Microsoft Announces New Campaign from NOBELIUM Situation The Microsoft Threat Intelligence Center (MSTIC) has released information on the uncovering of a widespread malicious email campaign undertaken by the activity… Read More