Tag CISA

CISA Issues Warning on Sitecore RCE Vulnerabilities; Active Exploits Target Next.js and DrayTek Devices

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially incorporated two significant six-year-old vulnerabilities affecting the Sitecore Content Management System and Experience Platform into its Known Exploited Vulnerabilities (KEV) catalog. This addition follows credible evidence indicating that these flaws are being actively targeted by malicious actors. The first vulnerability,…

Read MoreCISA Issues Warning on Sitecore RCE Vulnerabilities; Active Exploits Target Next.js and DrayTek Devices

Senator Calls for FTC Investigation of Microsoft Following Ascension Ransomware Attack

U.S. Senator Ron Wyden has called on the Federal Trade Commission (FTC) to investigate Microsoft following its role in a significant ransomware attack on Ascension Hospital, resulting in the exposure of 5.6 million patient records. In a letter dated September 10, 2025, Senator Wyden criticized Microsoft’s software, claiming it facilitated…

Read MoreSenator Calls for FTC Investigation of Microsoft Following Ascension Ransomware Attack

CISA Introduces a New Vision for the CVE Program: Will It Succeed?

CISA Reveals New Vision for CVE Program Amid Funding Concerns Chris Riotta (@chrisriotta) • September 11, 2025 Image: Mitre/Shutterstock/ISMG The Cybersecurity and Infrastructure Security Agency (CISA) has announced an updated vision for its Common Vulnerabilities and Exposures (CVE) program, a crucial system for tracking vulnerabilities worldwide. Despite the agency’s objectives,…

Read MoreCISA Introduces a New Vision for the CVE Program: Will It Succeed?

CISA Updates KEV List with Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM

On March 10, 2025, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the inclusion of five new vulnerabilities affecting Advantive VeraCore and Ivanti Endpoint Manager (EPM) in its Known Exploited Vulnerabilities (KEV) catalog, following confirmed cases of exploitation in the wild. This escalation emphasizes a heightened risk for organizations…

Read MoreCISA Updates KEV List with Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM

VMware Discovers No Signs of 0-Day Vulnerabilities in Current ESXiArgs Ransomware Attacks

VMware Addresses Ransomware Attacks Targeting ESXi Servers On Monday, VMware announced that it has not detected any activity regarding the exploitation of an undisclosed zero-day vulnerability in its software amid a global wave of ransomware assaults. The company clarified that reports indicate attackers are primarily targeting End of General Support…

Read MoreVMware Discovers No Signs of 0-Day Vulnerabilities in Current ESXiArgs Ransomware Attacks

Active Exploit: CVE-2025-24054 Targets NTLM Credentials During File Downloads

On Thursday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of a medium-severity security vulnerability in Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog. This decision follows reports indicating that the flaw is actively being exploited in real-world scenarios. The vulnerability, identified as CVE-2025-24054, received a…

Read MoreActive Exploit: CVE-2025-24054 Targets NTLM Credentials During File Downloads

CISA Alerts on Ongoing Exploitation of ZK Java Web Framework Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant vulnerability affecting the ZK Framework to its Known Exploited Vulnerabilities (KEV) catalog, citing ongoing indications of active exploitation. This flaw, identified as CVE-2022-36537, carries a CVSS score of 7.5 and impacts several versions of the framework, specifically…

Read MoreCISA Alerts on Ongoing Exploitation of ZK Java Web Framework Vulnerability

Critical Ivanti Vulnerability Actively Exploited for TRAILBLAZE and BRUSHFIRE Malware Deployment

Ivanti Reveals Critical Security Vulnerability in Connect Secure, Active Exploitation Detected Ivanti has recently announced a critical security vulnerability in its Connect Secure product, which has been the target of active exploitation in real-world scenarios. Labeled CVE-2025-22457, this vulnerability, with a CVSS score of 9.0, involves a stack-based buffer overflow…

Read MoreCritical Ivanti Vulnerability Actively Exploited for TRAILBLAZE and BRUSHFIRE Malware Deployment

Urgent Update: Google Addresses Exploited Android Vulnerability (CVE-2025-27363)

On May 1, 2025, Google released its latest monthly security updates for Android, addressing 46 security vulnerabilities, including a high-severity flaw that has been confirmed as exploited in the wild. This specific vulnerability, registered as CVE-2025-27363, boasts a CVSS score of 8.1, indicating significant potential risks due to its ability…

Read MoreUrgent Update: Google Addresses Exploited Android Vulnerability (CVE-2025-27363)