The Information Highway

The Information Highway

FBI tells public to ignore false claims of hacked voter data

CISA

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are alerting the public of false claims that the U.S. voter registration data has been compromised in cyberattacks.

Continue reading
  380 Hits

CISA warns of Windows bug exploited in ransomware attacks

Windows

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity Windows vulnerability abused in ransomware attacks as a zero-day to its catalog of actively exploited security bugs.

Continue reading
  568 Hits

CISA warns of hackers exploiting Chrome, EoL D-Link bugs

CISA

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three security vulnerabilities to its 'Known Exploited Vulnerabilities' catalog, one impacting Google Chrome and two affecting some D-Link routers.

Continue reading
  659 Hits

CISA urges software devs to weed out path traversal vulnerabilities

CISA

CISA and the FBI urged software companies today to review their products and eliminate path traversal security vulnerabilities before shipping.

Continue reading
  577 Hits

CISA makes its "Malware Next-Gen" analysis system publicly available

CISA_headpic

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new version of "Malware Next-Gen," now allowing the public to submit malware samples for analysis by CISA.

Continue reading
  755 Hits

CISA tags Microsoft SharePoint RCE bug as actively exploited

SharePoint

CISA warns that attackers are now exploiting a Microsoft SharePoint code injection vulnerability that can be chained with a critical privilege escalation flaw for pre-auth remote code execution attacks.

Continue reading
  1757 Hits

CISA cautions against using hacked Ivanti VPN gateways even after factory resets

CISA-red-flare

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) revealed today that attackers who hack Ivanti VPN appliances using one of multiple actively exploited vulnerabilities may be able to maintain root persistence even after performing factory resets.

Continue reading
  848 Hits

CISA urges tech manufacturers to stop using default passwords

0_CISA

Today, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) urged technology manufacturers to stop providing software and devices with default passwords. 

Continue reading
  960 Hits

Hackers breach US govt agencies using Adobe ColdFusion exploit

CISA

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning about hackers actively exploiting a critical vulnerability in Adobe ColdFusion identified as CVE-2023-26360 to gain initial access to government servers. 

Continue reading
  854 Hits

CISA shares vulnerabilities, misconfigs used by ransomware gangs

CISA

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has unveiled additional details regarding misconfigurations and security vulnerabilities exploited by ransomware gangs, aiming to help critical infrastructure organizations thwart their attacks. 

Continue reading
  1355 Hits

NSA and CISA reveal top 10 cybersecurity misconfigurations

Hacker

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) revealed today the top ten most common cybersecurity misconfigurations discovered by their red and blue teams in the networks of large organizations. 

Continue reading
  905 Hits

CISA: New Whirlpool backdoor used in Barracuda ESG hacks

Barracuda-Whirlpool

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has discovered that the backdoor malware named 'Whirlpool' used in attacks on compromised Barracuda Email Security Gateway (ESG) devices. 

Continue reading
  960 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023