CISA Catch-up

It has been one of those weeks, so let’s catch up with the cyber security advisories from one of my trusted sources, The US government Cybersecurity and Infrastructure Security Agency (CISA).

There are alerts for Apple, Cisco and Mozilla products.

Cisco Releases Security Advisories for Multiple Products | CISA

Apple Releases Security Updates for Multiple Products | CISA

Mozilla Releases Security Advisories for Thunderbird and Firefox | CISA

And new entries in the exploited vulnerabilities database – these are particularly important as a product only gets listed here if there is evidence that a vulnerability is actually being exploited in the wild.

Known Exploited Vulnerabilities Catalog | CISA

CISA also releases industrial control system advisories – if you are responsible for these types of systems you should monitor their news page:

Current Activity | CISA

My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.

Clive Catton MSc (Cyber Security) – by-line and other articles