Cybersecurity
Category Added in a WPeMatico Campaign
There are 853 posts filed in Cybersecurity (this is page 52 of 86).
CISA Joins the Minimum Viable Secure Product Working Group
JCDC Working and Collaborating to Build Cyber Defense for Civil Society and High-Risk Communities
CISA Publishes High-Risk Communities Webpage
April is Emergency Communications Month
Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094
CISA and the open source community are responding to reports of malicious code being embedded in XZ Utils versions 5.6.0 and 5.6.1. This activity was assigned CVE-2024-3094. XZ Utils is data compression software and may be present in Linux distributions. The malicious code may allow unauthorized access to affected systems.
CISA recommends developers and users to downgrade XZ Utils to an uncompromised version—such as XZ Utils 5.4.6 Stable—hunt for any malicious activity and report any positive findings to CISA.
See the following advisory for more information:
Cisco Releases Security Updates for Multiple Products
Cisco released security updates to address vulnerabilities in Cisco IOS, IOS XE, and AP software. A cyber threat actor could exploit some of these vulnerabilities to cause a denial-of-service.
CISA encourages users and administrators to review the following advisories and apply the necessary updates:
Apple Released Security Updates for Safari and macOS
Apple released security updates to address a vulnerability (CVE-2024-1580) in Safari and macOS. A cyber threat actor could exploit this vulnerability to take control of an affected system.
CISA encourages users and administrators to review the following advisories and apply the necessary updates: