Whilst I have been away CISA has continued issuing useful advice.
It added a Google Chromium vulnerability to the Known Exploited Vulnerabilities Catalog. Google Chromium is an open–source browser project and is behind many widely used browsers including Google Chrome and Microsoft Edge.
CISA Has Added One Known Exploited Vulnerability to Catalog | CISA
VMware has released a range of security updates:
VMware Releases Security Updates | CISA
Probably the most interesting announcement is advice about phishing and MFA vulnerabilities:
CISA Releases Guidance on Phishing-Resistant and Numbers Matching Multifactor Authentication | CISA
CISA also releases industrial control system advisories – if you are responsible for these types of systems you should monitor their news page:
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.