Tag: Cybersecurity and Infrastructure Security Agency (CISA)
-
The Register: CISA: We didn’t fire our red team, we just unhired a bunch of them
Source URL: https://www.theregister.com/2025/03/13/cisa_red_team_layoffs/ Source: The Register Title: CISA: We didn’t fire our red team, we just unhired a bunch of them Feedly Summary: Agency tries to save face as it also pulls essential funding for election security initiatives The US cybersecurity agency is trying to save face by seeking to clear up what it’s calling…
-
The Register: CISA worker says 100-strong Red Team fired after DOGE cancelled contract
Source URL: https://www.theregister.com/2025/03/12/cisa_staff_layoffs/ Source: The Register Title: CISA worker says 100-strong Red Team fired after DOGE cancelled contract Feedly Summary: Election infosec advisory agency also shuttered A penetration tester who worked at the US govt’s CISA claims his 100-strong team was dismissed after Elon Musk’s Trump-blessed DOGE unit cancelled a contract – and that more…
-
Alerts: CISA Releases Two Industrial Control Systems Advisories
Source URL: https://www.cisa.gov/news-events/alerts/2025/03/11/cisa-releases-two-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Two Industrial Control Systems Advisories Feedly Summary: CISA released two Industrial Control Systems (ICS) advisories on March 11, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-070-01 Schneider Electric Uni-Telway Driver ICSA-25-070-02 Optigo Networks Visual BACnet Capture Tool/Optigo Visual Networks…
-
Alerts: CISA Adds Five Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2025/03/10/cisa-adds-five-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Five Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-25181 Advantive VeraCore SQL Injection Vulnerability CVE-2024-57968 Advantive VeraCore Unrestricted File Upload Vulnerability CVE-2024-13159 Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability CVE-2024-13160 Ivanti…
-
Alerts: CISA Releases Three Industrial Control Systems Advisories
Source URL: https://www.cisa.gov/news-events/alerts/2025/03/06/cisa-releases-three-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Three Industrial Control Systems Advisories Feedly Summary: CISA released three Industrial Control Systems (ICS) advisories on March 6, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-065-01 Hitachi Energy PCU400 ICSA-25-065-02 Hitachi Energy Relion 670/650/SAM600-IO ICSA-25-037-02 Schneider Electric EcoStruxure (Update…
-
The Register: US Cyber Command reportedly pauses cyberattacks on Russia
Source URL: https://www.theregister.com/2025/03/03/infosec_in_brief/ Source: The Register Title: US Cyber Command reportedly pauses cyberattacks on Russia Feedly Summary: PLUS: Phishing suspects used fishing gear as alibi; Apple’s ‘Find My’ can track PCs and Androids; and more Infosec In Brief US Defense Secretary Pete Hegseth has reportedly ordered US Cyber Command to pause offensive operations against Russia,…
-
The Register: 200-plus impressively convincing GitHub repos are serving up malware
Source URL: https://www.theregister.com/2025/02/26/infosec_bytes/ Source: The Register Title: 200-plus impressively convincing GitHub repos are serving up malware Feedly Summary: Plus: DOGE staff quit; LastPass PC, Mac gasp; and CISA warns Oracle and Adobe flaws under attack Infosec bytes Kaspersky says it has found more than 200 GitHub repos hosting fairly convincing-looking fake projects laced with malicious…
-
The Register: London celebrity talent agency reports itself to ICO following Rhysida attack claims
Source URL: https://www.theregister.com/2025/02/19/london_celebrity_talent_agency_reports/ Source: The Register Title: London celebrity talent agency reports itself to ICO following Rhysida attack claims Feedly Summary: Showbiz members’ passport scans already plastered online A London talent agency has reported itself to the UK’s data protection watchdog after the Rhysida ransomware crew last week claimed it had attacked the business, which…