CISA

Entity category: organization

Business

US Critical Infrastructure Hit by Pro-Russia Cyberattacks

December 11, 2025
Cracked image showing the flags of Russia and the United States.

Pro-Russia hacktivist groups are exploiting weak security to breach U.S. critical infrastructure, causing real disruptions in sectors like water and…

Read More »
Business

CISA Alerts: Chinese “BrickStorm” Malware Targets VMware Servers

December 6, 2025
Silhouetted figures stand before a stylized Chinese flag backdrop.

A sophisticated Chinese-linked malware campaign called "Brickstorm" is targeting VMware vSphere servers, using hidden virtual machines to steal credentials and…

Read More »
Artificial Intelligence

US & Australia Release AI Security Guidelines for Infrastructure

December 5, 2025
Blurred server room with glowing blue interfaces and a person holding a tablet.

U.S. and Australian cybersecurity agencies have released joint guidelines to help critical infrastructure operators securely integrate AI tools, like machine…

Read More »
Business

Pall Mall Process: Defining Responsible Cyber Intrusion

December 5, 2025
Magnifying glass focuses on 'SPYWARE' text with a bug icon on a red background.

The Pall Mall Process, a joint UK-France initiative with 27 governments and major tech firms, aims to establish international standards…

Read More »
Cybersecurity

CISA Warns of Active Android Attacks – Update Now

December 5, 2025
Cybersecurity and Infrastructure Security Agency (CISA) logo.

CISA has issued an urgent directive for federal employees to apply critical Android security updates by December 23 or stop…

Read More »
BigTech Companies

Google Patches Actively Exploited Zero-Day Vulnerabilities

December 4, 2025
Android 16 game icon displayed on a phone screen next to a keyboard.

Google has released a critical Android security update patching over 100 vulnerabilities, including three severe flaws that are under active,…

Read More »
Business

Patch Now: CISA Warns of Active Oracle Identity Manager Attack

November 27, 2025
Smartphone displaying the Oracle logo in red against a white screen.

A critical vulnerability (CVE-2025-61757) in Oracle Identity Manager is being actively exploited, allowing unauthenticated attackers to execute arbitrary code via…

Read More »
Business

Urgent CISA Alert: Active Oracle Identity Manager RCE Exploits

November 23, 2025
Oracle logo against a red and black building backdrop.

A critical security vulnerability (CVE-2025-61757) in Oracle Identity Manager allows attackers to execute remote code without authentication by exploiting weaknesses…

Read More »
BigTech Companies

Google Issues Emergency Chrome Update for 2 Billion Users

November 22, 2025
Close-up of the Google Chrome app icon on a dark background.

Google has issued an emergency security patch for Chrome to address a high-severity vulnerability (CVE-2025-13223) that is already being actively…

Read More »
Cybersecurity

D-Link DIR-878 routers have critical RCE flaws

November 21, 2025
D-Link logo superimposed on a glowing blue digital world map with network connections.

D-Link has issued a critical alert for its unsupported DIR-878 router, revealing three severe vulnerabilities that allow unauthenticated remote command…

Read More »
Business

CISA Warns of Rising Bulletproof Hosting Threat

November 21, 2025
A metallic bullet fragmenting into geometric shapes against a white background.

CISA and global partners have released a guide to help combat bulletproof hosting, which enables ransomware, phishing, and other cybercrimes…

Read More »
Business

CISA Orders Agencies to Patch Critical Fortinet Flaw in 7 Days

November 21, 2025
CISA logo with a digital network background in blue and red.

CISA has mandated a 7-day deadline for U.S. government agencies to patch CVE-2025-58034, a critical Fortinet FortiWeb vulnerability being actively…

Read More »
Cybersecurity

Urgent: Actively Exploited FortiWeb Flaw Patched (CVE-2025-58034)

November 20, 2025
Fortinet logo superimposed over a stylized human eye with a digital cityscape background.

A critical OS command injection vulnerability (CVE-2025-58034) in FortiWeb firewalls is being actively exploited, allowing attackers to execute arbitrary commands…

Read More »
Cybersecurity

RondoDox Botnet Exploits Critical XWiki Server Flaw

November 19, 2025
A large group of identical red robots with glowing white eyes stand in formation.

The RondoDox botnet malware is actively exploiting a critical remote code execution vulnerability (CVE-2025-24893) in XWiki Platform, as confirmed by…

Read More »
Artificial Intelligence

Windows Kernel Flaw Fixed, Fortinet Zero-Day Exploited

November 17, 2025
Man looking at a futuristic digital display showing cybersecurity data.

Cybersecurity demands constant vigilance against evolving threats like zero-day exploits and requires organizations to adopt layered defense strategies that combine…

Read More »
BigTech Companies

Urgent ASUS Router Security Flaw Exposed

November 15, 2025
The white ASUS logo is displayed prominently against a dark background with glowing red circuit board patterns.

ASUS has released an urgent firmware update (version 1.1.2.3_1010) to fix a critical security flaw (CVE-2025-59367) that allows unauthorized remote…

Read More »
BigTech Companies

US Agencies Still Vulnerable to Critical Cisco Flaws

November 15, 2025
CISA logo against a backdrop of digital data streams and city lights.

CISA issued an emergency directive for U.S. federal agencies to patch two actively exploited Cisco vulnerabilities (CVE-2025-20333 and CVE-2025-20362), as…

Read More »
Cybersecurity

CISA Alerts: Akira Ransomware Now Targets Linux, Nutanix VMs

November 15, 2025
Hooded figure holding a glowing red cube against a futuristic city backdrop.

The Akira ransomware group has expanded to target Linux systems and Nutanix AHV virtual machines, exploiting vulnerabilities like CVE-2024-40766 and…

Read More »
Business

CISA: Hackers Actively Exploiting WatchGuard Firewall Flaw

November 14, 2025
WatchGuard logo on a red, abstract digital circuit board background.

A critical security flaw (CVE-2025-9242) in WatchGuard Firebox firewalls is being actively exploited, prompting CISA to issue an urgent patch…

Read More »
Business

US agencies urged to patch Cisco firewalls amid active attacks

November 13, 2025
The United States Capitol Building dome and facade under a dramatic, cloudy sky.

U.S. federal agencies must immediately patch vulnerable Cisco firewalls due to active exploitation of security flaws in Cisco ASA software…

Read More »
Load More