CISA – NuclearCoffee

Hacker news

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

On Dec 06, 2025 11:44 am, by NuclearCoffee

Dec 06, 2025Ravie LakshmananVulnerability / Patch Management The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting React Server Components (RSC)… Continue reading

Hacker news

CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems

On Dec 05, 2025 9:18 am, by NuclearCoffee

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday released details of a backdoor named BRICKSTORM that has been put to use by state-sponsored threat actors from… Continue reading

Hacker news

CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV

On Nov 30, 2025 11:10 am, by NuclearCoffee

Nov 30, 2025Ravie LakshmananHacktivism / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) catalog to include a security flaw impacting… Continue reading

Hacker news

CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users

On Nov 25, 2025 7:04 am, by NuclearCoffee

Nov 25, 2025Ravie LakshmananSpyware / Mobile Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday issued an alert warning of bad actors actively leveraging commercial spyware… Continue reading

Hacker news

CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability

On Nov 22, 2025 11:34 am, by NuclearCoffee

Nov 22, 2025Ravie LakshmananZero-Day / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw impacting Oracle Identity Manager to its… Continue reading

Hacker news

CISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login Attacks

On Nov 13, 2025 7:53 am, by NuclearCoffee

Nov 13, 2025Ravie LakshmananVulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting WatchGuard Fireware to its Known… Continue reading

Hacker news

CISA Adds Gladinet and CWP Flaws to KEV Catalog Amid Active Exploitation Evidence

On Nov 05, 2025 8:44 am, by NuclearCoffee

Nov 05, 2025Ravie LakshmananVulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting Gladinet and Control Web Panel (CWP)… Continue reading

Hacker news

CISA and NSA Issue Urgent Guidance to Secure WSUS and Microsoft Exchange Servers

On Oct 31, 2025 10:31 am, by NuclearCoffee

Oct 31, 2025Ravie LakshmananVulnerability / Threat Intelligence The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA), along with international partners from Australia and Canada,… Continue reading

Hacker news

CISA Flags VMware Zero-Day Exploited by China-Linked Hackers in Active Attacks

On Oct 31, 2025 8:28 am, by NuclearCoffee

Oct 31, 2025Ravie LakshmananVulnerability / Cyber Attack The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Broadcom VMware Tools and VMware… Continue reading

Hacker news

Active Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under Attack

On Oct 29, 2025 9:25 am, by NuclearCoffee

Oct 29, 2025Ravie LakshmananVulnerability / Malware Threat actors are actively exploiting multiple security flaws impacting Dassault Systèmes DELMIA Apriso and XWiki, according to alerts issued by the U.S…. Continue reading

Tag: CISA

Stay Connected