CISA Adds Telerik and Zoho Vulnerabilities To Known Exploited Vulnerabilities Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has added Telerik and Zoho vulnerabilities to its Known Exploited Vulnerabilities Catalog.
Network Security
Securezoo Cybersecurity Threat Center blog posts regarding Network Security.
Cisco released security advisory for OpenSSL vulnerabilities affecting Cisco products
Cisco has released a security advisory for OpenSSL vulnerabilities affecting Cisco products.
Fortinet patches Critical risk vulnerability (CVE-2021-32589) in FortiOS, FortiProxy and FortiSwitchManager
Fortinet has patched a Critical risk vulnerability (CVE-2021-32589) in FortiOS, FortiProxy and FortiSwitchManager.
Sophos Firewall RCE vulnerability (CVE-2022-3236) exploited the wild
Sophos has fixed a Sophos Firewall remote code execution (RCE) vulnerability (CVE-2022-3236) exploited in the wild.
Mirai variant MooBot botnet targets multiple D-Link flaws
Security researchers from Palo Alto Networks Unit 42 have discovered a Mirai botnet variant dubbed “MooBot” that targets multiple D-Link flaws and exposed networking devices running Linux.
Cisco releases Critical advisory for Small Business RV routers
Cisco has released a Critical security update for three vulnerabilities in Small Business RV Routers. An unauthenticated, remote attacker could execute arbitrary code or cause a denial of service (DoS) condition on an unpatched device.
Cisco patched 3 Nexus Dashboard Unauthorized Access Vulnerabilities
Cisco has released a Critical severity security advisory for three Nexus Dashboard unauthorized access vulnerabilities.
ZuoRAT targets SOHO devices to launch sophisticated multi-stage cyber attacks
Threat actors are using a multi-stage malware dubbed ZuoRAT to exploit small office/home office (SOHO) routers and launch sophisticated attacks against North American and European networks.
Cisco patches Critical Cisco Expressway Series and Cisco TelePresence Video Communication Server vulnerabilities
Cisco has released a Critical severity security advisory for Cisco Expressway Series and Cisco TelePresence Video Communication Server vulnerabilities (CVE-2022-20812 and CVE-2022-20813).
Attackers could exploit Critical F5 BIG-IP vulnerability to execute arbitrary commands
Unauthenticated attackers could exploit a Critical BIG-IP iControl REST vulnerability CVE-2022-1388 to execute arbitrary system commands, create or delete files, or disable services on BIG-IP systems.