-
![Samsung Phones Vulnerabilities]()
CISA Adds Samsung Phone Vulnerabilities to Its “Must Patch” Vulnerabilities Catalog
In an ongoing effort to enhance cybersecurity, the Cybersecurity and Infrastructure Security Agency (CISA) has identified and added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog. These additions are based on evidence of active exploitation in the wild, and they encompass a range of devices and manufacturers. The first new addition, CVE-2019-17621, refers to…
-
![]()
Department of Transportation Suffers Major Cyber Breach
WASHINGTON D.C. – A substantial cyber breach has occurred at the Department of Transportation (DOT), with a potential impact on approximately 237,000 present and past federal employees, as disclosed by Reuters last Friday. The cyber intrusion was primarily focused on TRANServe, a transit benefits scheme managed by the DOT. According to an internal email that…
-
![]()
CISA Releases New Audit Tool for Microsoft Cloud Services Security
The US Cybersecurity and Infrastructure Security Agency (CISA) has released the “Untitled Goose Tool” to help detect malicious activity in Microsoft Azure, Azure Active Directory, and Microsoft 365 environments. The tool offers new authentication and data collection methods for network defenders to analyze their Microsoft cloud services. The tool allows users to export and review…
-
![]()
CISA Issues Urgent Warning on Critical Adobe ColdFusion Vulnerability Exploited in the Wild
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a critical security vulnerability affecting Adobe ColdFusion to its Known Exploited Vulnerabilities (KEV) catalog, indicating evidence of active exploitation. The vulnerability, identified as CVE-2023-26360 (CVSS score: 8.6), enables a threat actor to achieve arbitrary code execution due to an improper access control issue in…
