CISA

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

AndyC 7 December 2025

Dec 06, 2025Ravie LakshmananVulnerability / Patch Management The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a...

BRICKSTORM backdoor exposed: CISA warns of advanced China-backed intrusions

AndyC 6 December 2025

BRICKSTORM backdoor exposed: CISA warns of advanced China-backed intrusions Pierluigi Paganini December 05, 2025 CISA details BRICKSTORM, a China-linked backdoor...

CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems

AndyC 6 December 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday released details of a backdoor named BRICKSTORM that has been...

U.S. CISA adds a new an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog

AndyC 5 December 2025

U.S. CISA adds a new an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 04, 2025 U.S....

U.S. CISA adds Android Framework flaws to its Known Exploited Vulnerabilities catalog

AndyC 3 December 2025

U.S. CISA adds Android Framework flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 02, 2025 U.S. Cybersecurity and...

The cost of abandoned genAI projects? Garbage code, orphan apps, and security issues

U.S. CISA adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog

AndyC 2 December 2025

U.S. CISA adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 01, 2025 U.S. Cybersecurity and...

CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV

AndyC 1 December 2025

Nov 30, 2025Ravie LakshmananHacktivism / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities...

CISA: Spyware and RATs used to target WhatsApp and Signal Users

AndyC 26 November 2025

CISA: Spyware and RATs used to target WhatsApp and Signal Users Pierluigi Paganini November 25, 2025 CISA warns that threat...

CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users

AndyC 25 November 2025

Nov 25, 2025Ravie LakshmananSpyware / Mobile Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday issued an alert...

U.S. CISA adds an Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities catalog

AndyC 23 November 2025

U.S. CISA adds an Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 22, 2025 U.S. Cybersecurity...

CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability

AndyC 23 November 2025

Nov 22, 2025Ravie LakshmananZero-Day / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical...

U.S. CISA adds a Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog

AndyC 20 November 2025

U.S. CISA adds a Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 19, 2025 U.S. Cybersecurity...

U.S. CISA adds a new Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

AndyC 20 November 2025

U.S. CISA adds a new Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 19, 2025 U.S. CISA...

Updated Response to CISA Advisory (AA24-109A): #StopRansomware: Akira Ransomware

AndyC 19 November 2025

On April 18, 2024, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the...

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

AndyC 16 November 2025

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 15, 2025 U.S. Cybersecurity and Infrastructure...

CISA

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

BRICKSTORM backdoor exposed: CISA warns of advanced China-backed intrusions

CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems

U.S. CISA adds a new an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Android Framework flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog

CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV

CISA: Spyware and RATs used to target WhatsApp and Signal Users

CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users

U.S. CISA adds an Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities catalog

CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability

U.S. CISA adds a Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds a new Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

Updated Response to CISA Advisory (AA24-109A): #StopRansomware: Akira Ransomware

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

Credential stuffing: What it is and how to protect yourself

This month in security with Tony Anscombe – December 2025 edition

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Donate Bitcoin to this address

Donate Ethereum to this address

This Week in Scams: Explaining the Fake Amazon Code Surge

Illinois Department of Human Services (IDHS) suffered a data breach that impacted 700K individuals

What roles do Agentic AI play in innovation?

How do NHIs empower secure cloud environments?

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed