CISA: CISA Releases Twenty-One Industrial Control Systems Advisories
CISA Releases Twenty-One Industrial Control Systems Advisories CISA released twenty-one Industrial Control Systems (ICS) advisories on October 10, 2024. These...
CISA Releases Twenty-One Industrial Control Systems Advisories CISA released twenty-one Industrial Control Systems (ICS) advisories on October 10, 2024. These...
Microsoft Releases October 2024 Security Updates Microsoft released security updates to address vulnerabilities in multiple products. A cyber threat actor...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force Today,...
Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM) Today, CISA published the Framing Software Component Transparency, created...
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 15, 2024. These...
CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment Today, the Cybersecurity and Infrastructure Security...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Vulnerability Summary: CVE-2024-21261 Vulnerability in Oracle Application Express (component: General). Supported versions that are affected are 23.2 and 24.1. Difficult...
Vulnerability Summary: CVE-2024-21251 Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.24,...
Vulnerability Summary: CVE-2024-21250 Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E-Business Suite (component: Quality Manager Specification)....
Vulnerability Summary: CVE-2024-21260 Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are...
Vulnerability Summary: CVE-2024-21259 Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected...
Vulnerability Summary: CVE-2024-21255 Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: XMLPublisher). Supported versions that are affected...
Vulnerability Summary: CVE-2024-21258 Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: User Interface). Supported versions that...
Vulnerability Summary: CVE-2024-21266 Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price List). Supported versions that...
Vulnerability Summary: CVE-2024-21257 Vulnerability in the Oracle Hyperion BI+ product of Oracle Hyperion (component: UI and Visualization). The supported version...
Vulnerability Summary: CVE-2024-21265 Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site Hierarchy Flows). Supported versions...
Ransomware Group: FOG VICTIM NAME: Cordogan Clark and Associates (cordoganclarkcom) NOTE: No files or stolen information are by RedPacket Security....
Ransomware Group: FOG VICTIM NAME: Welker (welkercom) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Threat actors are attempting to abuse the open-source EDRSilencer tool as part of efforts to tamper endpoint detection and response...
Ransomware Group: RANSOMHUB VICTIM NAME: powiatjedrzejowpl NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Ransomware Group: ABYSS VICTIM NAME: Promise Technology, Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...
CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment Today, the Cybersecurity and Infrastructure Security...