Alerts warn about vulnerabilities, incidents, and other security issues that pose a significant risk.
Posted: January 20, 2020, 2:54 pm
Original release date: January 20, 2020 | Last revised: January 27, 2020
Note: As of January 24, 2020, Citrix has released all expected updates in response to CVE-2019-19781.
On January 19, 2020, Citrix released firmware updates for Citrix Application Delivery Controller (ADC) and Citrix Gateway versions 11.1 and 12.0.Read More
On January 22, 2020, Citrix released security updates for vulnerable SD-WAN WANOP appliances.
On January 23, 2020, Citrix released firmware updates for Citrix ADC an...
Posted: January 14, 2020, 5:46 pm
Original release date: January 14, 2020
New vulnerabilities are continually emerging, but the best defense against attackers exploiting patched vulnerabilities is simple: keep software up to date. Timely patching is one of the most efficient and cost-effective steps an organization can take to minimize its exposure to cybersecurity threats.
On January 14, 2020, Microsoft released software fixes to address 49 vulnerabilities as part of their monthly Patch Tuesday announcement. Among the...Read More
Posted: January 10, 2020, 11:45 am
Original release date: January 10, 2020
Unpatched Pulse Secure VPN servers continue to be an attractive target for malicious actors. Affected organizations that have not applied the software patch to fix a remote code execution (RCE) vulnerability, known as CVE-2019-11510, can become compromised in an attack. 
Although Pulse Secure  disclosed the vulnerability and provided software patches for the various affected products in April 2019, the Cybersecurity and Infrastructure Secur...Read More
Posted: January 6, 2020, 8:01 pm
Original release date: January 6, 2020
The Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection of our Nation’s critical infrastructure in light of the current tensions between the Islamic Republic of Iran and the United States and Iran’s historic use of cyber offensive activities to retaliate against perceived harm. Foremost, CISA recommends organizations take the follow...Read More
Posted: December 5, 2019, 2:13 pm
Original release date: December 5, 2019 | Last revised: January 2, 2020
This Alert is the result of recent collaboration between the Department of the Treasury Financial Sector Cyber Information Group (CIG) and the Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) to identify and share information with the financial services sector. Treasury and the Cybersecurity and Infrastructure Security Agency (CISA) are providing this report to inform the sector about the D...Read More