The US Government Cybersecurity and Infrastructure Security Agency has issued security advisories on a number of products from F5, Cisco and VMware. Cisco Releases Security Updates for RV Series Routers | CISA F5 Releases Security Updates | CISA VMware Releases Security Updates | CISA
Another botnet expanding it’s malicious capabilities
The EnemyBot malware had added VMware and F5 critical flaws to it’s attack vectors: EnemyBot malware adds enterprise flaws to exploit arsenal • The Register The worse thing about this malware, (other than if it infects your systems), is that the “unarmed” code is available on Github.
CISA warns of threat actors exploiting the F5 vulnerabilities
The US Government Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory of threat actors exploiting the software issues in the F5 systems: Threat Actors Exploiting F5 BIG IP CVE-2022-1388 | CISA
Life cycle of a vulnerability
I spend a lot of time with clients, in training courses and on this blog, explaining the significance of the “zero day” issue and how every organisation (and individual) needs to have a plan to deal with it. This post from SANS Internet Storm looks at the life cycle of …
CISA vulnerability reports
Just one new vulnerability on Cybersecurity and Infrastructure Security Agency’s Known Exploited Vulnerabilities Catalog, for the F5 environment. CISA Adds One Known Exploited Vulnerability to Catalog | CISA