The US government Cybersecurity and Infrastructure Security Agency (CISA) is one of our go-to information sources for cyber security information. Here is a round-up of their latest alerts:
Apple Released Security Updates for Safari and macOS | CISA
Cisco Releases Security Updates for Multiple Products | CISA
Fortinet Releases Security Updates for Multiple Products | CISA
Microsoft Releases April 2024 Security Updates | CISA – Microsoft Patch Tuesday – April 2024 | Smart Thinking Solutions
Adobe Releases Security Updates for Multiple Products | CISA
Although CISA’s main responsibility is to the US Government and their departments, so some of the software here could be a bit obscure, some of the alerts above impacted our clients, which makes this a useful resource.
Known Exploited Vulnerabilities Catalog
CISA also maintains a database of exploited vulnerabilities which it knows about and includes mitigation for the issues.
CISA also releases industrial control system advisories – if you are responsible for these types of systems you should monitor their news page:
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.
Clive Catton MSc (Cyber Security) – by-line and other articles