Tag: threats
-
The Register: I tried hard, but didn’t fix cybersecurity, admits outgoing US National Cyber Director
Source URL: https://www.theregister.com/2025/01/08/oncd_director_harry_coker_exit_remarks/ Source: The Register Title: I tried hard, but didn’t fix cybersecurity, admits outgoing US National Cyber Director Feedly Summary: In colossal surprise, ONCD boss Harry Coker says more work is needed The outgoing leader of the USA’s Office of the National Cyber Director has a clear message for whoever President-elect Trump picks…
-
Slashdot: White House Launches ‘Cyber Trust’ Safety Label For Smart Devices
Source URL: https://yro.slashdot.org/story/25/01/08/2225255/white-house-launches-cyber-trust-safety-label-for-smart-devices?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: White House Launches ‘Cyber Trust’ Safety Label For Smart Devices Feedly Summary: AI Summary and Description: Yes Summary: The U.S. Cyber Trust Mark has been introduced as a cybersecurity safety label for internet-connected consumer devices, allowing consumers to assess the security features of products before purchasing. The initiative, backed…
-
Alerts: Ivanti Releases Security Updates for Connect Secure, Policy Secure, and ZTA Gateways
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/08/ivanti-releases-security-updates-connect-secure-policy-secure-and-zta-gateways Source: Alerts Title: Ivanti Releases Security Updates for Connect Secure, Policy Secure, and ZTA Gateways Feedly Summary: Ivanti released security updates to address vulnerabilities (CVE-2025-0282, CVE-2025-0283) in Ivanti Connect Secure, Policy Secure, and ZTA Gateways. A cyber threat actor could exploit CVE-2025-0282 to take control of an affected system.CISA has added CVE-2025-0282…
-
Alerts: CISA Adds One Vulnerability to the KEV Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/08/cisa-adds-one-vulnerability-kev-catalog Source: Alerts Title: CISA Adds One Vulnerability to the KEV Catalog Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-0282 Ivanti Connect Secure Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the…
-
The Register: Mitel 0-day, 5-year-old Oracle RCE bugs under active exploit
Source URL: https://www.theregister.com/2025/01/08/mitel_0_day_oracle_rce_under_exploit/ Source: The Register Title: Mitel 0-day, 5-year-old Oracle RCE bugs under active exploit Feedly Summary: 3 CVEs added to CISA’s catalog Cybercriminals are actively exploiting two vulnerabilities in Mitel MiCollab, including a zero-day flaw, alongside a critical remote code execution vulnerability in Oracle WebLogic Server that has been exploited for at least…
-
Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/07/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-41713 Mitel MiCollab Path Traversal Vulnerability CVE-2024-55550 Mitel MiCollab Path Traversal Vulnerability CVE-2020-2883 Oracle WebLogic Server Unspecified Vulnerability Users and administrators are also encouraged to…