Tag CISA

June 27, 2025

Vulnerability Under Active Exploitation Grants Unprecedented Control Over Server Networks

On Wednesday, the Cybersecurity and Infrastructure Security Agency (CISA) identified CVE-2024-54085 as a newly recognized vulnerability actively being exploited in the wild. While the specifics surrounding this vulnerability remain undisclosed, its implications have raised significant concern among cybersecurity experts. Research conducted by Eclypsium highlighted the wide-ranging repercussions of these exploits.…

June 20, 2025

Anubis Ransomware’s Intriguing New Strategy

Artificial Intelligence & Machine Learning, Fraud Management & Cybercrime, Government Also: CISA’s Leadership Crisis; Why AI’s Confident Errors Demand Urgent Oversight Anna Delaney (annamadeline) • June 20, 2025 Clockwise, from top left: Anna Delaney, Tony Morbin, Chris Riotta and Mathew Schwartz In the latest update from Information Security Media Group…

June 17, 2025

Trump’s Nominee for CISA Leadership Faces Confirmation Delays

Government, Industry Specific, Training & Security Leadership Sean Plankey’s CISA Nomination Faces Further Delays Amid Rising Tensions Chris Riotta (@chrisriotta) • June 16, 2025 Sean Plankey, nominee for the U.S. Cybersecurity and Infrastructure Security Agency. President Donald Trump’s nomination of Sean Plankey to lead the Cybersecurity and Infrastructure Security Agency…

June 13, 2025

Exposed IT Tool Leaves System Vulnerable

Cybersecurity experts and business leaders are on heightened alert following the recent confirmation of a breach at a utility billing software provider, which has its origins in unpatched vulnerabilities associated with the SimpleHelp Remote Monitoring and Management (RMM) platform. The breach has unveiled critical weaknesses that have been exploited by…

June 2, 2025

Trump’s Homeland Security Budget Slashes CISA Workforce and Crucial Initiatives

Cybersecurity Spending, Government, Industry Specific DHS Budget Proposal Targets CISA’s Operational Capacity Amid Escalating Global Cyber Threats Chris Riotta (@chrisriotta) • June 2, 2025 The U.S. cyber defense agency braces for significant staffing and budget reductions under the proposed fiscal year 2026 budget. (Image: U.S. Department of Homeland Security) The…

May 24, 2025

Zimbra CVE-2024-27443 XSS Vulnerability Affects 129,000 Servers, Sednit Linked to the Attack

A significant cross-site scripting (XSS) vulnerability, designated CVE-2024-27443, has been identified in the CalendarInvite feature of the Zimbra Collaboration Suite, and it is currently being exploited, possibly by the Sednit hacking group. This flaw poses a risk of user session compromise, emphasizing the urgent need for prompt patching. The latest…

May 21, 2025

US Senate Democrats Urge Noem to Reconsider Cuts to Cybersecurity Funding

Cybersecurity Spending, Government, Industry Specific Homeland Security Chief Asserts Trump Budget Bolsters Cybersecurity David Perera (@daveperera) • May 20, 2025 U.S. Homeland Security Secretary Kristi Noem testifying before the Senate Homeland Security Committee. (Image: ) During a Senate committee hearing, Democrats expressed concern about budget cuts proposed by the Trump…

May 19, 2025

DDoSecrets Incorporates 410GB of TeleMessage Breach Data into Its Index

On May 4, 2025, TeleMessage, an Israeli firm specializing in modified encrypted messaging applications such as Signal, experienced a significant data breach. This incident led to the exposure of sensitive archived messages, contact information of government officials, and backend login credentials. The breach was executed by an unidentified hacker who…

May 19, 2025

CISA Safeguards Critical Infrastructure Through Timely Cyber Alerts

Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Standards, Regulations & Compliance Executive Director Bridget Bean Discusses Proactive Alert Systems That Prevented $8.7 Billion in Potential Damages Rahul Neel Mani (@rneelmani) • May 19, 2025 Bridget Bean, Executive Director, Cybersecurity and Infrastructure Security Agency With state-sponsored cyber threats from China,…