AA22-138B: Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control
Original release date: May 18, 2022 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this Cybersecurity Advisory (CSA) to warn organizations that malicious
AA22-138A: Threat Actors Exploiting F5 BIG-IP CVE-2022-1388
Original release date: May 18, 2022 Summary Actions for administrators to take today: • Do not expose management interfaces to the internet. • Enforce multi-factor
AA22-137A: Weak Security Controls and Practices Routinely Exploited for Initial Access
Original release date: May 17, 2022 Summary Best Practices to Protect Your Systems: • Control access. • Harden Credentials. • Establish centralized log management. •
AA22-131A: Protecting Against Cyber Threats to Managed Service Providers and their Customers
Original release date: May 11, 2022 Summary Tactical actions for MSPs and their customers to take today: • Identify and disable accounts that are no
AA22-117A: 2021 Top Routinely Exploited Vulnerabilities
Original release date: April 27, 2022 Summary This joint Cybersecurity Advisory (CSA) was coauthored by cybersecurity authorities of the United States, Australia, Canada, New Zealand,
AA22-110A: Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure
Original release date: April 20, 2022 Summary Actions critical infrastructure organizations should implement to immediately protect against Russian state-sponsored and criminal cyber threats: • Patch