Topic: private sector security
-
CISA Alerts: Old GitLab Bug Actively Exploited in Attacks
A critical, years-old GitLab vulnerability (CVE-2021-39935) is now being actively exploited, prompting urgent warnings from U.S. cybersecurity authorities. CISA has mandated federal agencies to patch this flaw within three weeks and strongly recommends all organizations do the same, as it allows ...
Read More » -
Urgent: CISA Confirms Active Attacks Exploiting Critical Microsoft SCCM Flaw
A critical SQL injection vulnerability (CVE-2024-43468) in Microsoft Configuration Manager is now being actively exploited, allowing unauthenticated attackers to execute arbitrary code with the highest privileges. The Cybersecurity and Infrastructure Security Agency (CISA) has mandated federal ag...
Read More » -
Urgent: CISA Warns of Active Attacks on Critical Adobe Flaw
CISA has issued a critical alert about active exploitation of a maximum-severity vulnerability (CVE-2025-54253) in Adobe Experience Manager, allowing attackers to execute malicious code on unpatched systems. The flaw, discovered by security researchers, enables unauthenticated attackers to bypass...
Read More »