A vulnerability has been discovered in SonicWall Secure Mobile Access (SMA) 100 Management Interface, which could allow for remote code execution. SonicWall Secure Mobile Access (SMA) is a unified secure access gateway used by organizations.
Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for remote code execution with no additional execution privileges needed. Android is an operating system developed by Google for mobile devices, such as smartphones.
Cyber threat actors are exploiting a Commvault vulnerability tracked as CVE-2025-3928. The flaw in the Commvault Web Server could allow an authenticated remote user to create and execute web shells. Commvault is widely used for data backup and management..
The NJCCIC periodically receives reports of New Jersey users implementing mailbox forwarding rules that automatically forward messages from their work email to an external mailbox that is not monitored by their organization. Email forwarding to external non-work accounts...
Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution. Depending on the privileges associated...
A vulnerability has been discovered in SAP NetWeaver Visual Composer, which could allow for remote code execution. SAP NetWeaver Visual Composer is SAP’s web-based software modelling tool. It enables business process specialists and developers to create...
Microsoft Exchange Server 2016 and 2019 will reach end-of-life status on October 14. While these systems will continue to run, they will no longer receive security patches or bug fixes. Additionally, extended support and Extended Security Updates will not be offered.
The NJCCIC received reports of Social Security Administration (SSA) phishing emails, consistent with the SSA’s scam alert earlier this month. The emails contain SSA branding to appear legitimate and claim to be from the SSA. However, upon further inspection, they were sent from...
In direct deposit or payroll diversion scams, threat actors research the targeted organization and identify an employee to impersonate. They typically register a free email address using the employee’s name and utilizing display name spoofing in the messages.
The application window for high school, middle school, and elementary school summer internships will be open from April 24 - May 9, 2025. Please click on the links below for more information on each of the internships offered, including program dates and format.
