Tag: CISA
-
Alerts: CISA Adds Two Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/11/04/cisa-adds-two-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Two Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-8957 PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability CVE-2024-8956 PTZOptics PT30X-SDI/NDI Cameras Authentication Bypass Vulnerability These types of vulnerabilities are frequent attack vectors…
-
Hacker News: Feds: Critical Software Must Drop C/C++ by 2026 or Face Risk
Source URL: https://thenewstack.io/feds-critical-software-must-drop-c-c-by-2026-or-face-risk/ Source: Hacker News Title: Feds: Critical Software Must Drop C/C++ by 2026 or Face Risk Feedly Summary: Comments AI Summary and Description: Yes Summary: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a critical report warning software manufacturers about dangerous security practices, especially concerning the use of…
-
Schneier on Security: Roger Grimes on Prioritizing Cybersecurity Advice
Source URL: https://www.schneier.com/blog/archives/2024/10/roger-grimes-on-prioritizing-cybersecurity-advice.html Source: Schneier on Security Title: Roger Grimes on Prioritizing Cybersecurity Advice Feedly Summary: This is a good point: Part of the problem is that we are constantly handed lists…list of required controls…list of things we are being asked to fix or improve…lists of new projects…lists of threats, and so on, that are…
-
Alerts: CISA Releases Four Industrial Control Systems Advisories
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/31/cisa-releases-four-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Four Industrial Control Systems Advisories Feedly Summary: CISA released four Industrial Control Systems (ICS) advisories on October 31, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-305-01 Rockwell Automation FactoryTalk ThinManager ICSA-24-030-02 Mitsubishi Electric FA Engineering Software Products (Update A)…
-
Alerts: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/29/jcdcs-industry-government-collaboration-speeds-mitigation-crowdstrike-it-outage Source: Alerts Title: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage Feedly Summary: CISA, through the Joint Cyber Defense Collaborative (JCDC), enabled swift, coordinated response and information sharing in the wake of a significant IT outage caused by a CrowdStrike software update. This outage, which impacted government, critical infrastructure, and industry…
-
Alerts: CISA Releases Three Industrial Control Systems Advisories
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/29/cisa-releases-three-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Three Industrial Control Systems Advisories Feedly Summary: CISA released three Industrial Control Systems (ICS) advisories on October 29, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-303-01 Siemens InterMesh Subscriber Devices ICSA-24-303-02 Solar-Log Base 15 ICSA-24-303-03 Delta Electronics InfraSuite Device…
-
The Register: Feds investigate China’s Salt Typhoon amid campaign phone hacks
Source URL: https://www.theregister.com/2024/10/28/feds_investigate_chinas_salt_typhoon/ Source: The Register Title: Feds investigate China’s Salt Typhoon amid campaign phone hacks Feedly Summary: ‘They’re taunting us,’ investigator says and it looks like it’s working The feds are investigating Chinese government-linked cyberspies breaking into the infrastructure of US telecom companies, as reports suggest Salt Typhoon – the same crew believed to…