Skip to main content

Cybersecurity Alerts

Cybersecurity Alerts gathers information from various sources around the world to keep you informed on the latest cyber threats, attacks, and information.

US-CERT RSS Feed

US-CERT strives for a safer, stronger Internet for all Americans by responding to major incidents, analyzing threats, and exchanging critical cybersecurity information with trusted partners around the world.

Alerts provide timely information about current security issues, vulnerabilities, and exploits.

Alerts
AA23-025A: Protecting Against Malicious Use of Remote Monitoring and Management Software
Jan 25, 2023
Original release date: January 25, 2023 | Last revised: January 26, 2023SummaryThe Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) (hereafter referr…
AA22-335A: #StopRansomware: Cuba Ransomware
Dec 1, 2022
Original release date: December 1, 2022 | Last revised: January 5, 2023SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attemp…
AA22-321A: #StopRansomware: Hive Ransomware
Nov 17, 2022
Original release date: November 17, 2022 | Last revised: November 25, 2022SummaryActions to Take Today to Mitigate Cyber Threats from Ransomware: • Prioritize remediating known exploited vulnerabilities. • Enable and enforce multifactor authentication wi…
AA22-320A: Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester
Nov 16, 2022
Original release date: November 16, 2022 | Last revised: November 25, 2022SummaryFrom mid-June through mid-July 2022, CISA conducted an incident response engagement at a Federal Civilian Executive Branch (FCEB) organization where CISA observed suspected a…
Current Activity
CISA Releases Six Industrial Control Systems Advisories
Feb 2, 2023
Original release date: February 2, 2023CISA released six Industrial Control Systems (ICS) advisories on February 2, 2023.These advisories provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encou…
CISA Adds Two Known Exploited Vulnerabilities to Catalog
Feb 2, 2023
Original release date: February 2, 2023CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors a…
Cisco Releases Security Advisories for Multiple Products
Feb 2, 2023
Original release date: February 2, 2023Cisco released security updates for vulnerabilities affecting multiple products. A remote attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators …
Drupal Releases Security Update to Address a Vulnerability in Apigee Edge
Feb 2, 2023
Original release date: February 2, 2023Drupal released a security update to address a vulnerability affecting the Apigee Edge module for Drupal 9.x. An attacker could exploit this vulnerability to bypass access authorization or disclose sensitive informat…
VMware Releases Security Update for VMware vRealize Operations
Feb 1, 2023
Original release date: February 1, 2023VMware released a security update that addresses a cross-site request forgery bypass vulnerability affecting VMware vRealize Operations. A malicious user could exploit this vulnerability to take control of an affecte…