Tag CISA

U.S. Federal Authorities Disable China-Linked “KV-Botnet” Aimed at SOHO Routers

The U.S. government announced on Wednesday that it has taken significant action to disrupt a botnet composed of hundreds of small office and home office (SOHO) routers based in the United States. This botnet, referred to as the KV-botnet, is linked to Volt Typhoon, a state-sponsored threat actor associated with…

Read MoreU.S. Federal Authorities Disable China-Linked “KV-Botnet” Aimed at SOHO Routers

CISA Intensifies Election Security Alerts as Voting Commences

Election Security, Fraud Management & Cybercrime, Government CISA Affirms Election Security Amid Heightening Threat Landscape Chris Riotta (@chrisriotta) • October 21, 2024 CISA has provided ongoing election-related guidance as the November vote approaches. (Image: Shutterstock) As early voting commences across 28 states, the Cybersecurity and Infrastructure Security Agency (CISA) is…

Read MoreCISA Intensifies Election Security Alerts as Voting Commences

Iranian Hackers Launch MFA Push Bombing Attacks on Microsoft 365 and Citrix Systems

Iranian Hackers Target Critical Infrastructure with Advanced Techniques Recent intelligence from a collaborative cybersecurity advisory issued by CISA, FBI, and NSA has raised alarms about Iranian hackers aggressively targeting critical infrastructure across sectors such as healthcare, government, IT, engineering, and energy. These threat actors utilize a combination of brute force…

Read MoreIranian Hackers Launch MFA Push Bombing Attacks on Microsoft 365 and Citrix Systems

Warning: CosmicSting Exploit Targeting Adobe Commerce and Magento Stores

Critical Vulnerability Exposes Adobe Commerce and Magento Stores to Exploits Recent cybersecurity research indicates that a significant 5% of all Adobe Commerce and Magento stores have been compromised due to a serious security vulnerability named CosmicSting. This development underscores the escalating risk that online retailers are facing in the digital…

Read MoreWarning: CosmicSting Exploit Targeting Adobe Commerce and Magento Stores

SolarWinds Addresses 8 Critical Vulnerabilities in Access Rights Manager Software

SolarWinds has recently addressed a series of critical security vulnerabilities within its Access Rights Manager (ARM) software that pose significant risks to users. These vulnerabilities could be exploited by malicious actors to gain unauthorized access to sensitive information or to execute arbitrary code, making this a pressing concern for businesses…

Read MoreSolarWinds Addresses 8 Critical Vulnerabilities in Access Rights Manager Software

CISA Includes Twilio Authy and Internet Explorer Vulnerabilities in Exploited Vulnerabilities List

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) catalog, adding two significant security vulnerabilities linked to active exploitation. These vulnerabilities highlight persistent risks for organizations, particularly those within the federal sphere, and underscore the importance of timely mitigation strategies. The first vulnerability,…

Read MoreCISA Includes Twilio Authy and Internet Explorer Vulnerabilities in Exploited Vulnerabilities List

State-Sponsored Hackers Leverage Two Cisco Zero-Day Vulnerabilities for Espionage Activities

A recent malware campaign has targeted Cisco networking equipment, exploiting two previously unknown vulnerabilities identified as zero-day flaws to deliver customized malware and conduct covert data collection in targeted environments. Cisco Talos, naming this operation “ArcaneDoor,” has attributed the attacks to UAT4356, an advanced state-sponsored group also known as Storm-1849…

Read MoreState-Sponsored Hackers Leverage Two Cisco Zero-Day Vulnerabilities for Espionage Activities

CISA Alerts on Serious Jenkins Vulnerability Being Targeted in Ransomware Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant vulnerability related to Jenkins to its Known Exploited Vulnerabilities (KEV) catalog due to its exploitation in ransomware attacks. This vulnerability, designated as CVE-2024-23897 with a critical CVSS score of 9.8, is classified as a path traversal flaw that…

Read MoreCISA Alerts on Serious Jenkins Vulnerability Being Targeted in Ransomware Attacks