The Qilin ransomware group is exploiting two critical Fortinet vulnerabilities in recent attacks. The flaws, CVE-2024-55591 and CVE-2024-21762, allow threat actors to bypass authentication and remotely execute code . Despite previous exploitation of these vulnerabilities by various cyber...
The NJCCIC’s email security solution observed an uptick in campaigns spreading Astaroth malware from TA2725 . Astaroth, first spotted in 2017, is an information-stealing trojan that primarily targets businesses in Brazil, Europe, and other countries throughout Latin America.
Critical severity vulnerabilities CVE-2025-5777 and CVE-2025-6543 were identified in Citrix NetScaler ADC and NetScaler Gateway. CVE-2025-5777 could allow unauthorized attackers to steal valid session tokens from the memory of internet-facing NetScaler devices via malformed requests.
This Multi-State Information Sharing & Analysis Center (MS-ISAC) and Public Safety Threat Alliance (PSTA) Joint Report is being provided to assist agencies and organizations in guarding against the persistent malicious actions of cyber threat actors.
Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user.
Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, delete data...
Multiple vulnerabilities have been discovered in Mozilla Firefox, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Successful exploitation of the most severe of these vulnerabilities could allow...
Multiple Vulnerabilities have been discovered in HPE StoreOnce Software, which when chained together could allow for remote code execution, potentially leading to session hijacking and full system compromise. HPE StoreOnce is a data protection platform.
The Cybersecurity and Infrastructure Security Agency (CISA), Region 2, in coordination with the National Cybersecurity Preparedness Consortium (NCPC), is sponsoring a four-day Malware Prevention, Discovery, and Recovery (MPDR) training course.
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the internet. Successful exploitation of the most severe of these vulnerabilities could allow for...
