Alerts

  • Vulnerability Summary for the Week of January 11, 2021
    by CISA on January 18, 2021 at 12:00 pm

    Original release date: January 18, 2021 The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.   High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info agentejo -- cockpit Cockpit before […]

  • NSA Releases Guidance on Encrypted DNS in Enterprise Environments  
    by CISA on January 15, 2021 at 9:00 pm

    Original release date: January 15, 2021The National Security Agency (NSA) has released an information sheet with guidance on adopting encrypted Domain Name System (DNS) over Hypertext Transfer Protocol over Transport Layer Security (HTTPS), referred to as DNS over HTTPS (DoH). When configured appropriately, strong enterprise DNS controls can help prevent many initial access, command and control, and exfiltration techniques used by threat actors. CISA encourages enterprise owners and […]

  • Apache Releases Security Advisory for Tomcat
    by CISA on January 15, 2021 at 3:43 pm

    Original release date: January 15, 2021The Apache Software Foundation has released a security advisory to address a vulnerability affecting multiple versions of Apache Tomcat. An attacker could exploit this vulnerability to obtain sensitive information.    CISA encourages users and administrators to review the Apache security advisory for CVE-2021-24122 and upgrade to the appropriate version.   This product is provided subject to this Notification and this Privacy & Use […]

  • RCE Vulnerability Affecting Microsoft Defender
    by CISA on January 14, 2021 at 1:30 pm

    Original release date: January 14, 2021Microsoft has released a security advisory to address a remote code execution vulnerability, CVE-2021-1647, in Microsoft Defender. A remote attacker can exploit this vulnerability to take control of an affected system. This vulnerability was detected in exploits in the wild. CISA encourages users and administrators to review Microsoft Advisory for CVE-2021-1647 and apply the necessary updates.  This product is provided subject to this […]

  • Cisco Releases Security Updates for Multiple Products
    by CISA on January 14, 2021 at 1:25 pm

    Original release date: January 14, 2021Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page. CISA encourages users and administrators to review the following Cisco Advisories and apply the necessary updates: AnyConnect Secure Mobility Client for Windows DLL Injection […]

  • Juniper Networks Releases Security Updates for Multiple Products
    by CISA on January 14, 2021 at 1:23 pm

    Original release date: January 14, 2021Juniper Networks has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to cause take control of an affected system. CISA encourages users and administrators to review the Juniper Networks security advisories page and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

  • Strengthening Security Configurations to Defend Against Attackers Targeting Cloud Services
    by CISA on January 14, 2021 at 3:00 am

    Original release date: January 13, 2021 | Last revised: January 14, 2021Background These types of attacks frequently occurred when victim organizations’ employees worked remotely and used a mixture of corporate laptops and personal devices to access their respective cloud services. Despite the use of security tools, affected organizations typically had weak cyber hygiene practices that allowed threat actors to conduct successful attacks. Technical Details The cyber threat actors involved […]

  • Attackers Exploit Poor Cyber Hygiene to Compromise Cloud Security Environments
    by CISA on January 13, 2021 at 7:44 pm

    Original release date: January 13, 2021CISA is aware of several recent successful cyberattacks against various organizations’ cloud services. Threat actors used a variety of tactics and techniques, including phishing and brute force logins, to attempt to exploit weaknesses in cloud security practices. In response, CISA has released Analysis Report AR21-013A: Strengthening Security Configurations to Defend Against Attackers Targeting Cloud Services which provides technical details and […]

  • Microsoft Releases January 2021 Security Updates
    by CISA on January 12, 2021 at 8:35 pm

    Original release date: January 12, 2021Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s January 2021 Security Update Summary and Deployment Information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

  • NSA Cybersecurity Directorate Releases 2020 Year in Review
    by CISA on January 12, 2021 at 3:22 pm

    Original release date: January 12, 2021The National Security Agency (NSA) Cybersecurity Directorate has released its 2020 Year in Review, outlining key milestones and mission outcomes achieved during NSA Cybersecurity’s first full year of existence. Highlights include NSA Cybersecurity’s contributions to the 2020 elections, Operation Warp Speed, and the Department of Defense’s pandemic-influenced transition to telework. For further details on those and other accomplishments, CISA […]