Security News > 2024 > January > CISA warns agencies of fourth flaw used in Triangulation spyware attacks
2024-01-09 19:32
The Known Exploited Vulnerabilities catalog, or KEV for short, contains security issues that have been actively exploited in the wild.
CISA has given federal agencies until January 29 to patch the six actively exploited flaws or stop using the vulnerable products.
CISA warns of actively exploited bugs in Chrome and Excel parsing library.
Hackers breach US govt agencies using Adobe ColdFusion exploit.
CISA warns of actively exploited Windows, Sophos, and Oracle bugs.
Apache OFBiz RCE flaw exploited to find vulnerable Confluence servers.
News URL
Related news
- CISA Warns of CentreStack's Hard-Coded MachineKey Vulnerability Enabling RCE Attacks (source)
- CISA tags SonicWall VPN flaw as actively exploited in attacks (source)
- Google: 97 zero-days exploited in 2024, over 50% in spyware attacks (source)
- CISA tags Broadcom Fabric OS, CommVault flaws as exploited in attacks (source)
- NSO Group fined $167M for spyware attacks on 1,400 WhatsApp users (source)
- CISA Warns of Suspected Broader SaaS Attacks Exploiting App Secrets and Cloud Misconfigs (source)
- CISA says SaaS providers in firing line after Commvault zero-day Azure attack (source)