A vulnerability in Roundcube webmail is being actively exploited and CISA is urging users to install an updated version.
Tag: cisa
CISA: Disconnect vulnerable Ivanti products TODAY
CISA has ordered all FCEB agencies to disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure solution products.
CISA urges urgent patching of two actively exploited Citrix NetScaler vulnerabilities
CISA has added two Citrix NetScaler vulnerabilities to its vulnerability catalog, with a very short deadline to patch.
Two Apple issues added by CISA to its catalog of known exploited vulnerabilities
The Cybersecurity & Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence…
Zimbra issues awaited patch for actively exploited vulnerability
Two weeks ago, we urged readers to apply a workaround for an actively exploited vulnerability in Zimbra Collaboration Suite (ZCS) email servers. Zimbra…
Reducing your attack surface is more effective than playing patch-a-mole
On June 13, 2023 the Cybersecurity and Infrastructure Security Agency (CISA) issued Binding Operational Directive (BOD) 23-02. BOD 23-02 is titled…
LockBit ransomware advisory from CISA provides interesting insights
The US Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), Multi-State Information Sharing and Analysis Center (MS-ISAC), and…
A week in security (May 22-28)
Last week on Malwarebytes Labs: Stay safe! Malwarebytes EDR and MDR removes all remnants of ransomware and prevents you from getting…
CISA updates ransomware guidance
The Cybersecurity and Infrastructure Security Agency (CISA) has updated its #StopRansomware guide to account for the fact that ransomware actors have…
Update now! Ruckus vulnerability added to CISA’s list of actively exploited bugs
Along with six older vulnerabilities, the Cybersecurity and Infrastructure Agency (CISA) has added a vulnerability in multiple Ruckus wireless products to…