October 11, 2024 at 12:38PM CISA warns that threat actors are exploiting unencrypted persistent F5 BIG-IP cookies to identify and target additional internal devices within compromised networks. This highlights the importance of securing sensitive cookies to prevent unauthorized access and potential breaches. **Meeting Takeaways:** 1. **Threat Actor Activity:** CISA has issued a warning regarding the … Read more
October 11, 2024 at 12:30PM CISA warns that unencrypted F5 BIG-IP persistent cookies are being exploited by threat actors to map internal devices, potentially identifying vulnerabilities for cyberattacks. Administrators are advised to enable cookie encryption and consult F5’s guidelines to protect against these security risks, emphasizing the importance of proper configurations. **Meeting Takeaways:** 1. **CISA … Read more
July 20, 2024 at 01:06AM CrowdStrike’s routine sensor update on July 19, 2024 triggered a logic error, causing critical Windows systems to crash globally. This issue was not caused by a cyberattack, affecting only Windows systems with Falcon sensor. The US cybersecurity agency CISA is collaborating with partners to assess impacts and support remediation efforts. … Read more
May 7, 2024 at 04:11PM CISA is launching a Ransomware Vulnerability Warning Pilot program to help healthcare, schools, and critical infrastructure organizations address security flaws exploited by ransomware groups. The system sent 1,754 notifications in its first year, resulting in 49% of organizations taking action. The program is set to become a fully automated warning … Read more
April 11, 2024 at 11:32AM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is investigating a recent breach at Sisense, a data analytics company that also impacted critical infrastructure organizations. CISA is collaborating with private industry partners to respond to the incident and has advised Sisense customers to reset potentially exposed credentials and report any … Read more