A vulnerability has been discovered in Oracle Products that could allow for remote code execution. Successful exploitation of this vulnerability could allow for remote code execution. Depending on the privileges associated with the user, an attacker could then install programs, and more.
This advisory is being provided to assist agencies and organizations in guarding against the persistent malicious actions of cybercriminals. A critical vulnerability has been discovered in ConnectWise ScreenConnect which could allow threat actors with access to...
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) jointly issued this Public Service Announcement (PSA) to warn the public about ongoing phishing campaigns by threat actors associated with the Russian...
The information in this Cybersecurity and Infrastructure Security Agency (CISA) Alert is being provided as is for informational purposes only. CISA does not endorse any commercial entity, product, company, or service, including any entities, products, or services linked within this document.
The NJCCIC identified a business email compromise campaign that impersonates ServiceNow to achieve financial gain. The email messages in this campaign seem to form a thread between a ServiceNow representative and the CEO of the targeted organization regarding...
The ransomware threat landscape has evolved greatly over the past few years. In most ransomware incidents, threat actors steal valuable data from victim networks during these operations. This data is then used to threaten victims of data exposure if ransom demands are not paid.
Over the past month, the NJCCIC observed multiple XWorm campaigns targeting NJ State employees. XWorm malware is a remote access trojan (RAT) capable of evading detection, gaining remote access, stealing credentials, exfiltrating data, and deploying ransomware.
The NJCCIC received several incident reports regarding an SMS text message phishing (SMiShing) campaign in which residents are receiving images of what appears to be a notice of hearing for a traffic violation. These images include the State of New Jersey seal and allege...
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user.
The conflict in the Middle East has security implications for critical infrastructure sector owners and operators across the globe. One potential threat is increased cyberattacks from Iranian state-sponsored actors, hacktivists, and cybercriminal groups aligned with Iran.
