September, 2022 | Cystel

CISA Releases Four Industrial Control Systems Advisories

8 September 2022/in Archives, News

Original release date: September 8, 2022

CISA released four Industrial Control Systems (ICS) advisories on September 08, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations:

This product is provided subject to this Notification and this Privacy & Use policy.

#StopRansomware: Vice Society

6 September 2022/in Archives, News

Original release date: September 6, 2022

CISA, the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have released a joint Cybersecurity Advisory (CSA), #StopRansomware: Vice Society, to disseminate tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with Vice Society actors identified through FBI investigations as recently as September 2022. Vice Society uses ransomware attacks against the education sector to gain access to, and threaten exposure of, sensitive personal information regarding students and staff for financial gain.

CISA encourages organizations to review #StopRansomware: Vice Society for more information. Additionally, see StopRansomware.gov for guidance on ransomware protection, detection, and response.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA Releases Five Industrial Control Systems Advisories

6 September 2022/in Archives, News

Original release date: September 6, 2022

CISA has released five Industrial Control Systems (ICS) advisories on September 06, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations:

ICSA-22-249-01 Triangle Microworks Library
ICSA-22-249-02 AVEVA Edge 2020 R2 SP12020 R2
ICSA-22-249-03 Cognex 3D-A1000 Dimensioning System
ICSA-22-249-04 Hitachi Energy TXpert Hub CoreTec 4
ICSA-21-252-02 Delta Electronics DOPSoft 2 (Update A)

This product is provided subject to this Notification and this Privacy & Use policy.

CISA, NSA, and ODNI Release Part One of Guidance on Securing the Software Supply Chain

2 September 2022/in Archives, News

Original release date: September 2, 2022

CISA, the National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI), have published part one of a three-part joint publication series, Securing Software Supply Chain Series – Recommended Practices for Developers. This guidance—created by the Enduring Security Framework (ESF), a public-private cross-sector working group led by the NSA and CISA—focuses on software developers and provides suggested practices to ensure a more secure software supply chain.

CISA encourages acquiring organizations, software suppliers, and network operators to review the guidance and consider the recommendations. See CISA’s ICT Supply Chain Risk Management Task Force, ICT Supply Chain Resource Library, National Risk Management Center (NRMC) webpages for more information.

This product is provided subject to this Notification and this Privacy & Use policy.

Mozilla Releases Security Update for Thunderbird

2 September 2022/in Archives, News

Original release date: September 2, 2022

Mozilla has released security update to address a vulnerability in Thunderbird. An attacker could exploit this vulnerability to take control of an affected system.

CISA encourages users and administrators to review the Mozilla security advisory for Thunderbird 102.2.1 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.

Apple Releases Security Updates for Multiple Products

1 September 2022/in Archives, News

Original release date: September 1, 2022

Apple has released security updates to address a vulnerability (CVE-2022-32893) in iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation). Exploitation of this vulnerability could allow an attacker to take control of affected device.

CISA encourages users and administrators to review Apple’s advisory HT213428 and apply necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA releases two Industrial Control Systems Advisories

1 September 2022/in Archives, News

Original release date: August 31, 2022 | Last revised: September 1, 2022

CISA has released two Industrial Control Systems (ICS) advisories on September 01, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations:

This product is provided subject to this Notification and this Privacy & Use policy.

CISA Releases Four Industrial Control Systems Advisories

#StopRansomware: Vice Society

CISA Releases Five Industrial Control Systems Advisories

CISA, NSA, and ODNI Release Part One of Guidance on Securing the Software Supply Chain

Mozilla Releases Security Update for Thunderbird

Apple Releases Security Updates for Multiple Products

CISA releases two Industrial Control Systems Advisories

CONTACT INFORMATION

WHERE TO FIND US

CYBER SECURITY EMERGENCY SUPPORT