Security Advisories

Citrix Releases Security Updates for Hypervisor CISA Releases Cloud Security Technical Reference Architecture Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems CISA Releases Security Advisories Related to OT:ICEFALL (Insecure by Design) Report Keeping PowerShell: Measures to Use and Embrace Google Releases Security Updates for Chrome _______________________________ Citrix Releases Security Updates for Hypervisor Situation: Citrix has released security updates. Problem: Current versions have vulnerabilities that could affect Hypervisor. Implication:… Read More

SAP Releases June 2022 Security Updates Cisco Releases Security Updates for Multiple Products Adobe Releases Security Updates for Multiple Products Drupal Releases Security Updates _______________________________ SAP Releases June 2022 Security Updates Situation: SAP has released security updates for June 2022. Problem: Current versions of SAP software contain vulnerabilities affecting multiple products. Implication: An attacker could exploit some of these vulnerabilities to take control of an affected system. Need: We encourage… Read More

Google Releases Security Updates for Chrome CISA Releases Joint Cybersecurity Advisory on People’s Republic of China State-Sponsored Cyber actors Google Releases Security Updates for Chrome Situation: Google has released Chrome version 102.0.5005.115 for Windows, Mac, and Linux. Problem: Prior versions of Chrome contain vulnerabilities Implication: An attacker could exploit these vulnerabilities to take control of an affected system. Need: Users and administrators should review the “Chrome Release Note” and apply… Read More

Atlassian Releases New Versions of Confluence Server and Data Center to Address CVE-2022-26134 Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird CISA Releases Security Advisory on Dominion Voting Systems Democracy Suite ImageCast X _______________________________ Atlassian Releases New Versions of Confluence Server and Data Center to Address CVE-2022-26134 Situation: Atlassian has released new Confluence Server and Data Center versions… Read More

Google Releases Security Updates for Chrome Drupal Releases Security Updates CISA and DoD Release 5G Security Evaluation Process Investigation Study Citrix Releases Security Updates for ADC and Gateway CISA Adds 34 Known Exploited Vulnerabilities to Catalog Mozilla Releases Security Updates for Multiple Firefox Products _______________________________ Google Releases Security Updates for Chrome Situation: Chrome announced the promotion of Chrome 102 to the stable channel for Windows (102.0.5005.61/62/63), 102.0.5005.61 for Mac and Linux…. Read More

Please see Security Advisories for the week ending May 20, 2022 -Apple Releases Security Updates for Multiple Products -Apache Releases Security Advisory for Tomcat -Threat Actors Exploiting F5 BIG IP CVE-2022-1388 -CISA Releases Analysis of FY21 Risk and Vulnerability Assessments _______________________________ Apple Releases Security Updates for Multiple Products Situation Apple has released security updates to address vulnerabilities found in macOS, iOS and iPadOS. Problem Several Apple products contain multiple vulnerabilities. With… Read More

Please see Security Advisories for the week ending May 13, 2022 CISA Releases Joint Cybersecurity Advisory on Protecting MSPs and their Customers Google Releases Security Updates for Chrome Adobe Releases Security Updates for Multiple Products Palo Alto Networks Security Advisories – May 2022 Microsoft Releases May 2022 Security Updates U.S. Government Attributes Cyberattacks on SATCOM Networks to Russian State-Sponsored Malicious Cyber Actors _______________________________ CISA Releases Joint Cybersecurity Advisory on Protecting MSPs… Read More

Please see Security Advisories for the week ending May 6, 2022 • F5 Releases Security Advisories Addressing Multiple Vulnerabilities • Cisco Releases Security Updates for Enterprise NFV Infrastructure Software • Mozilla Releases Security Updates for Firefox and Firefox ESR _______________________________ F5 Releases Security Advisories Addressing Multiple Vulnerabilities Situation F5 has released security advisories on vulnerabilities affecting multiple products, including various versions of BIG-IP. Problem This vulnerability may allow an unauthenticated attacker… Read More

Please see Security Advisories for the week ending April 29, 2022 Google Releases Security Updates for Chrome Browser Cisco Releases Security Updates for Multiple Products CISA and FBI Update Advisory on Destructive Malware Targeting Organizations in Ukraine ________________________________   Google Releases Security Updates for Chrome Browser Situation Google has released a new Chrome browser version 101.0.4951.41 for Windows, Mac, and Linux operating systems. Problem Google has patched 30 security vulnerabilities ranging… Read More

Please see Security Advisories for the week ending April 22, 2022 Spring Framework Vulnerability (CVE-2022-22965) in Veritas Products FBI Releases IOCs Associated with BlackCat/ALPHV Ransomware Cisco Releases Security Updates for Multiple Products Drupal Releases Security Updates Oracle Releases April 2022 Critical Patch Update Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure CISA Releases Secure Cloud Business Applications (SCuBA) Guidance Documents for Public Comment _______________________________ Spring Framework Vulnerability (CVE-2022-22965) in Veritas… Read More