H-ISAC: White Reports
This guidance provides critical information on creating and maintaining a safe, secure operational technology (OT) environment.
Malvertising is a cyberattack method where legitimate advertising networks are infiltrated with malicious
advertisements.
On September 19, 2024, Ivanti disclosed a critical vulnerability, CVE-2024-8963, in its Cloud Services Appliance (CSA), which is being exploited in targeted attacks.
Broadcom released an advisory (VMSA-2024-0019) to address a pair of vulnerabilities affecting VMware vCenter Server and VMware Cloud Foundation.
Spring Framework recently disseminated a security advisory to address a path traversal vulnerability, tracked as CVE-2024-38816, in functional web frameworks.
August Vulnerabilities of Interest to the Health Sector In August 2024, vulnerabilities to the health sector have been released that require attention.
On September 11, 2024, Cisco issued advisories disclosing vulnerabilities affecting multiple products, including Cisco IOS XR Software, Crosswork Network Services Orchestrator (NSO), Optical Site Manager, and RV340 Dual WAN Gigabit VPN Routers.
Fortinet has experienced a third-party data breach affecting customers in the Asia-Pacific region.
Progress Software disclosed a batch of critical vulnerabilities affecting WhatsUp Gold.
On August 20, 2024, Tenable Security published a blog post regarding a critical vulnerability affecting Microsoft Copilot Studio.