Alerts

  • Microsoft Releases Security Update for Edge
    by CISA on October 26, 2020 at 6:10 pm

    Original release date: October 26, 2020Microsoft has released a security update to address vulnerabilities in Edge (Chromium-based). An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the latest entry for Microsoft Security Advisory ADV200002 apply the necessary update. This product is provided subject to this Notification and this […]

  • Vulnerability Summary for the Week of October 19, 2020
    by CISA on October 26, 2020 at 10:54 am

    Original release date: October 26, 2020 The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.   High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info acronis -- […]

  • CISA and FBI Release Joint Advisories Regarding Russian and Iranian APT Actors
    by CISA on October 22, 2020 at 5:40 pm

    Original release date: October 22, 2020The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released two joint cybersecurity advisories on widespread advanced persistent threat (APT) activity. Joint Cybersecurity Advisory: AA20-296A Russian State-Sponsored Advanced Persistent Threat Actor Compromises U.S. Government Targets Joint Cybersecurity Advisory: AA20-296B Iranian State-Sponsored Advanced Persistent Threat Actors Threaten […]

  • Cisco Releases Security Updates for Multiple Products
    by CISA on October 22, 2020 at 4:32 pm

    Original release date: October 22, 2020Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Cisco security page and apply the necessary updates.   This product is provided subject to this Notification and this Privacy & Use policy.

  • Iranian Advanced Persistent Threat Actors Threaten Election-Related Systems
    by CISA on October 22, 2020 at 4:00 pm

    Original release date: October 22, 2020The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are warning that Iranian advanced persistent threat (APT) actors are likely intent on influencing and interfering with the U.S. elections to sow discord among voters and undermine public confidence in the U.S. electoral process. The APT actors are creating fictitious media sites and spoofing legitimate media sites to spread obtained U.S. […]

  • Russian State-Sponsored Advanced Persistent Threat Actor Compromises U.S. Government Targets
    by CISA on October 22, 2020 at 12:44 pm

    Original release date: October 22, 2020This joint cybersecurity advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor tactics and techniques This joint cybersecurity advisory—written by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA)—provides information on Russian state-sponsored advanced persistent threat […]

  • Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird
    by CISA on October 21, 2020 at 4:34 pm

    Original release date: October 21, 2020Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Mozilla Security Advisories for Firefox 82, Firefox ESR 78.4, and Thunderbird 78.4 and apply the necessary updates. This product is […]

  • Google Releases Security Updates for Chrome
    by CISA on October 21, 2020 at 4:30 pm

    Original release date: October 21, 2020Google has released Chrome version 86.0.4240.111 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary changes. This product is provided subject to this Notification and this Privacy & Use policy.

  • Adobe Releases Security Updates for Multiple Products
    by CISA on October 21, 2020 at 4:10 pm

    Original release date: October 21, 2020Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates. Illustrator APSB20-53 Dreamweaver APSB20-55 Marketo APSB20-60 Animate APSB20-61 After […]

  • Oracle Releases October 2020 Security Bulletin
    by CISA on October 20, 2020 at 11:20 pm

    Original release date: October 20, 2020Oracle has released its Critical Patch Update for October 2020 to address 402 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Oracle October 2020 Critical Patch Update and apply the necessary updates. This product is provided subject […]