CISA Current Activity
A regularly updated summary of the most frequent, high-impact security incidents currently being reported to the US-CERT.Cisco Releases Security Updates for Multiple Products 6 Aug 2020, 2:36 pm
Original release date: August 6, 2020Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit one of these vulnerabilities to take obtain sensitive information.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Advisories and apply the necessary updates:
- Small Business Smart and Managed Switches Denial of Service Vulnerability cisco-sa-sbss-ipv6-dos-3bLk6vA
- DNA Center Information Disclosure Vulnerability cisco-sa-dna-info-disc-3bz8BCgR
- StarOS IPv6 Denial of Service Vulnerability cisco-sa-asr-dos-zJLJFgBf
- AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability cisco-sa-anyconnect-dll-F26WwJW
For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.
This product is provided subject to this Notification and this Privacy & Use policy.
NSA Releases Guidance on Limiting Location Data Exposure 6 Aug 2020, 2:33 pm
Original release date: August 6, 2020The National Security Agency (NSA) has released an information sheet with guidance on how to limit location data exposure for National Security System (NSS) / Department of Defense (DoD) system users, as well as the general public. NSA outlines mobile device geolocation services and provides recommendations on how to prevent the exposure of sensitive location information and reduce the amount of location data shared.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages administrators and users to review NSA's guidance on Limiting Location Data Exposure and CISA’s Security Tip on Privacy and Mobile Device Apps for information on protecting mobile location data.
This product is provided subject to this Notification and this Privacy & Use policy.
FBI Reports Increase in Online Shopping Scams 5 Aug 2020, 2:43 pm
Original release date: August 5, 2020The Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (I3C) has released an alert on a recent increase in online shopping scams. The scams direct victims to fraudulent websites via ads on social media platforms and popular online search engines’ shopping pages.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and consumers to review the IC3 Alert for indicators of fraud and tips to avoid being victimized, as well as CISA’s tip on Shopping Safely Online.
This product is provided subject to this Notification and this Privacy & Use policy.
Chinese Malicious Cyber Activity 3 Aug 2020, 12:27 pm
Original release date: August 3, 2020The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Defense (DoD) have identified a malware variant—referred as TAIDOOR—used by the Chinese government. In addition, U.S. Cyber Command has released the malware sample to the malware aggregation tool and repository, VirusTotal.
CISA encourages users and administrators to review Malware Analysis Report MAR-10292089-1.v1, U.S. Cyber Command’s VirusTotal page, and CISA’s Chinese Malicious Cyber Activity page for more information.
This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Updates for Multiple Products 30 Jul 2020, 2:47 pm
Original release date: July 30, 2020Cisco has released security updates to address vulnerabilities affecting multiple products. An unauthenticated, remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Advisories and apply the necessary updates. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.
- Cisco SD-WAN vManage Software Authorization Bypass Vulnerability cisco-sa-uabvman-SYGzt8Bv
- Cisco Data Center Network Manager Authentication Bypass Vulnerability cisco-sa-dcnm-bypass-dyEejUMs
- Cisco Data Center Network Manager Command Injection Vulnerability cisco-sa-devmgr-cmd-inj-Umc8RHNh
- Cisco Data Center Network Manager Command Injection Vulnerability cisco-sa-dcnm-rest-inj-BCt8pwAJ
- Cisco Data Center Network Manager Path Traversal Vulnerability cisco-sa-dcnm-path-trav-2xZOnJdR
- Cisco Data Center Network Manager Improper Authorization Vulnerability cisco-sa-dcnm-improper-auth-7Krd9TDT
- Cisco Data Center Network Manager Authentication Bypass Vulnerability cisco-sa-dcnm-auth-bypass-JkubGpu3
This product is provided subject to this Notification and this Privacy & Use policy.
GNU GRUB2 Vulnerability 30 Jul 2020, 2:40 pm
Original release date: July 30, 2020 | Last revised: July 31, 2020Free Software Foundation GNU Project's multiboot boot loader, GNU GRUB2, contains a vulnerability—CVE-2020-10713—that a local attacker could exploit to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the CERT Coordination Center’s Vulnerability Note VU#174059 for mitigations and to refer to operating system vendors for appropriate patches, when available. CISA encourages administrators to test rigorously before applying patches as changes to the bootloader carry high operational risk.
This product is provided subject to this Notification and this Privacy & Use policy.
Adobe Releases Security Updates for Magento 29 Jul 2020, 3:44 pm
Original release date: July 29, 2020 | Last revised: July 30, 2020Adobe has released security updates to address vulnerabilities in Magento Commerce 2 (formerly known as Magento Enterprise Edition) and Magento Open Source 2 (formerly known as Magento Community Edition). An attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Adobe Security Bulletin APSB20-47 and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
Mozilla Releases Security Updates for Multiple Products 29 Jul 2020, 3:40 pm
Original release date: July 29, 2020 | Last revised: July 30, 2020Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Mozilla Security Advisories and apply the necessary updates:
This product is provided subject to this Notification and this Privacy & Use policy.
Google Releases Security Updates for Chrome 28 Jul 2020, 2:53 pm
Original release date: July 28, 2020Google has released Chrome version 84.0.4147.105 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Updates for ASA and FTD Software 23 Jul 2020, 4:03 pm
Original release date: July 23, 2020Cisco has released security updates to address a vulnerability in Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software Web Service. A remote attacker could exploit this vulnerability to obtain sensitive information.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Cisco Security Advisory cisco-sa-asaftd-ro-path-KJuQhB86 for more information and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.