CISA addS three new bugs to KEV - two in Mitel’s MiCollab, and one in Oracle WebLogic Server The bugs allowed crooks to read sensitive files and take over vulnerable endpoints Federal agencies ...

Mitel has announced patches for a MiCollab path traversal vulnerability that can be exploited remotely without authentication.

CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. The ...

CISA added the flaws to its known vulnerability catalog, recommending swift patching pursuant to Binding Operational Directive (BOD) 22-01. Attackers are actively expoiting flaws in Mitel MiCollab ...

“Last night, CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services,” an agency spokesperson said. The Cybersecurity and Infrastructure ...

Mitel has addressed these vulnerabilities in MiCollab version 9.8 SP2 (9.8.2.12) and later. CISA is also warning about CVE-2020-2883, a vulnerability in Oracle's WebLogic Server that was patched ...

Amid broader reductions being levied across the cyber defense agency, CISA’s threat hunting division plans to cease use of Google-owned VirusTotal on April 20, according to the email's contents.

Too many vulnerable IT/OT assets are unnecessarily online, says CISA. It offers advice on what to do about it. The US Cybersecurity and Infrastructure Security Agency (CISA) this week issued ...

A directive against CISA and its former director Christopher Krebs raises concerns over the agency’s neutrality, operational stability, and future role in public-private cyber defense.

8. "These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise," CISA said. Mitel’s MiCollab is a popular unified ...