CISA Archives - The Stack

Cybersecurity

Photo of Known exploited list: 15 million systems still exposed

The Stack April 10, 2023

0 465

Known exploited list: 15 million systems still exposed

... and probably shot to high heaven with malware.

Cybersecurity

Photo of US agencies warn over “Royal” ransomware rise

The Stack March 7, 2023

0 922

US agencies warn over “Royal” ransomware rise

Phishing is key threat vector and a Blue Team bête noire...

Cybersecurity

Photo of IBM high speed file transfer software exploited by hackers

Ed Targett February 22, 2023

0 2,644

IBM high speed file transfer software exploited by hackers

A pre-auth RCE in IBM Aspera Faspex is being exploited in the wild

Cybersecurity

Photo of Critical controller bug could trigger traffic chaos: Software vendor ignores CISA outreach

Ed Targett January 27, 2023

0 2,914

Critical controller bug could trigger traffic chaos: Software vendor ignores CISA outreach

One of 14 new advisories on vulnerable ICS software...

Featured

Photo of Defending against Hive ransomware: It’s time to use the attackers’ tools

The Stack November 21, 2022

0 1,411

Defending against Hive ransomware: It’s time to use the attackers’ tools

And, um, do you know how to restore from backup without Active Directory?

Cybersecurity

Photo of GIGABYTE drivers are getting exploited warns CISA as 2018 bugs come back to bite

The Stack October 24, 2022

0 1,109

GIGABYTE drivers are getting exploited warns CISA as 2018 bugs come back to bite

POCs have circulated for years...

Cybersecurity

Photo of US agencies ordered to run asset discovery scans every single week

The Stack October 6, 2022

0 1,021

US agencies ordered to run asset discovery scans every single week

Knock Knock. Who's there? Multiple APTs, patch your shit.

Cybersecurity

Photo of Industrial software vuln actively exploited says CISA – but little evidence of real-world attacks

Eliot Beer August 30, 2022

0 2,114

Industrial software vuln actively exploited says CISA – but little evidence of real-world attacks

Attacks against ICS and OT systems are an increasingly real concern though.

Read This

Photo of Mitel 0day being used as access point for ransomware

Eliot Beer June 28, 2022

0 884

Mitel 0day being used as access point for ransomware

Crowdstrike-discovered vuln added to CISA's Known Exploited Vulnerabilities list.

Cybersecurity

Photo of This is how Chinese hackers are breaching telcos worldwide, say US authorities

Eliot Beer June 8, 2022

0 1,205

This is how Chinese hackers are breaching telcos worldwide, say US authorities

SOHO devices and unpatched enterprise switches are the way in.

CISA

Known exploited list: 15 million systems still exposed

US agencies warn over “Royal” ransomware rise

IBM high speed file transfer software exploited by hackers

Critical controller bug could trigger traffic chaos: Software vendor ignores CISA outreach

Defending against Hive ransomware: It’s time to use the attackers’ tools

GIGABYTE drivers are getting exploited warns CISA as 2018 bugs come back to bite

US agencies ordered to run asset discovery scans every single week

Industrial software vuln actively exploited says CISA – but little evidence of real-world attacks

Mitel 0day being used as access point for ransomware

This is how Chinese hackers are breaching telcos worldwide, say US authorities

Chinese state-backed “Volt Typhoon” hackers attack US critical infrastructure

Microsoft Fabric, a new unified data platform, teases analytics goodness, has gaps to fill