Loading…

Quick linksDashboard Signals Chain Terminal Protocol Mobile view →

Time zone

Situations

Quick linksDashboard Signals Chain Terminal Protocol Mobile view →

Time zone

Nexus

Markets Signals Chain Data Terminal Situations Protocol

Loading…

ALL SYSTEMS NORMALFEED LATENCY 15MS

[cyber]CRITICALresolved

Critical Infrastructure

AI is actively monitoring this situation. Last scan: Mar 4, 08:16 AM.

[Situation briefing]

Cybersecurity and CVE monitoring

No major developments yet. Timeline entries will appear here when significant events are detected.

[Articles]

Mar 4CNBC World

Banking, payments services disrupted after Amazon UAE data centers hit in drone strikes

Amazon Web Services data centers in the UAE were struck by drone attacks, causing widespread disruptions to banking and payments services in the region. The incident represents a significant attack on critical digital infrastructure with immediate economic and financial system impacts. The identity of the attackers and full extent of damage are not yet confirmed.

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added CVE-2025-14733, a WatchGuard Firebox out-of-bounds write vulnerability, to its Known Exploited Vulnerabilities catalog based on evidence of active exploitation. Federal Civilian Executive Branch agencies are required to remediate the vulnerability by the specified due date under Binding Operational Directive 22-01. CISA urges all organizations to prioritize remediation as part of their vulnerability management practices.

NIST and CISA Release Draft Interagency Report on Protecting Tokens and Assertions from Tampering Theft and Misuse for Public Comment

CISA and NIST have released a draft Interagency Report (IR 8597) for public comment, addressing the protection of identity tokens and assertions from forgery, theft, and misuse in cloud environments. The guidance responds to a White House executive order on cybersecurity and is aimed at federal agencies and cloud service providers. It covers identity access management controls, Secure by Design principles, and clarifies shared responsibilities between CSPs and government consumers. Public commen

CISA Releases Two Industrial Control Systems Advisories

CISA released two Industrial Control Systems (ICS) advisories addressing security vulnerabilities in WHILL C2 electric wheelchairs and AzeoTech DAQFactory industrial automation software. The advisories provide technical details on current security issues, vulnerabilities, and exploits affecting these ICS products. CISA encourages administrators to review the advisories and apply recommended mitigations.

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added CVE-2023-52163, a Missing Authorization vulnerability in the Digiever DS-2105 Pro, to its Known Exploited Vulnerabilities catalog based on evidence of active exploitation. The agency urges all organizations to prioritize timely remediation of KEV catalog vulnerabilities, while federal civilian agencies are required to patch by a set due date under Binding Operational Directive 22-01.

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two newly exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog: CVE-2009-0556, a Microsoft Office PowerPoint code injection flaw, and CVE-2025-37164, an HPE OneView code injection vulnerability. Both are being actively exploited and pose significant risks to federal and enterprise networks. Federal Civilian Executive Branch agencies are required to remediate these vulnerabilities by the specified due dates under Binding Operational Directive 22-01.

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added a new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog: CVE-2025-8110, a path traversal vulnerability in Gogs, based on evidence of active exploitation. The catalog addition requires Federal Civilian Executive Branch agencies to remediate the vulnerability by a specified due date to protect federal networks. CISA also urges all organizations to prioritize remediation as part of their vulnerability management practices.

CISA and Partners Release Update to Malware Analysis Report BRICKSTORM Backdoor

CISA, NSA, and the Canadian Centre for Cyber Security released an updated Malware Analysis Report on the BRICKSTORM backdoor, providing new indicators of compromise and YARA detection signatures for additional samples including Rust-based variants. The updated report highlights advanced persistence and defense evasion mechanisms, including background service execution and encrypted WebSocket command-and-control communications. Organizations are urged to deploy the updated IOCs and signatures and

CISA Releases One Industrial Control Systems Advisory

CISA released an Industrial Control Systems advisory (ICSA-25-177-01) addressing security vulnerabilities in Mitsubishi Electric Air Conditioning Systems (Update B). The advisory provides technical details on current security issues, vulnerabilities, and exploits affecting ICS environments. CISA encourages administrators to review the advisory and apply relevant mitigations.

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation, including flaws in Vite, Versa Concerto, Prettier eslint-config-prettier, and Synacor Zimbra Collaboration Suite. These vulnerabilities pose significant risks to the federal enterprise and represent frequent attack vectors for malicious cyber actors. Federal Civilian Executive Branch agencies are required to remediate the identified vulnerabilities by designated due da

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added CVE-2025-14847, a MongoDB improper handling of length parameter inconsistency vulnerability, to its Known Exploited Vulnerabilities catalog based on evidence of active exploitation. Federal Civilian Executive Branch agencies are required to remediate the vulnerability by the specified due date under Binding Operational Directive 22-01. CISA urges all organizations to prioritize timely remediation as part of their vulnerability management practices.

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA has added five newly confirmed exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, including flaws in the Linux Kernel, SmarterTools SmarterMail, Microsoft Office, and GNU InetUtils. Federal Civilian Executive Branch agencies are required to remediate these vulnerabilities by designated due dates under Binding Operational Directive 22-01. CISA urges all organizations to prioritize patching these vulnerabilities as part of standard vulnerability management practic

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added a Microsoft Windows Information Disclosure vulnerability (CVE-2026-20805) to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation. Federal Civilian Executive Branch agencies are required to remediate the vulnerability by a specified due date under Binding Operational Directive 22-01. CISA urges all organizations to prioritize timely remediation as part of their vulnerability management practices.

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added a new actively exploited vulnerability to its Known Exploited Vulnerabilities Catalog: CVE-2026-20045, a code injection flaw affecting Cisco Unified Communications Products. Federal Civilian Executive Branch agencies are required to remediate the vulnerability by a specified due date under Binding Operational Directive 22-01. CISA urges all organizations to prioritize timely remediation as part of their vulnerability management practices.

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four newly confirmed exploited vulnerabilities to its Known Exploited Vulnerabilities catalog, including flaws in Sangoma FreePBX, GitLab Community and Enterprise Editions, and SolarWinds Web Help Desk. The vulnerabilities span improper authentication, SSRF, deserialization of untrusted data, and OS command injection. Federal Civilian Executive Branch agencies are required to remediate these by specified due dates, and CISA urges all organizations to prioritize patching.

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added CVE-2024-37079, a Broadcom VMware vCenter Server out-of-bounds write vulnerability, to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation. The vulnerability poses significant risks to federal networks, and FCEB agencies are required to remediate it by a specified due date under Binding Operational Directive 22-01. CISA urges all organizations to prioritize timely remediation as part of their vulnerability management practices.

Mar 4CISA Alerts

Fortinet Releases Guidance to Address Ongoing Exploitation of Authentication Bypass Vulnerability CVE-2026-24858

Fortinet has disclosed a new authentication bypass vulnerability (CVE-2026-24858) affecting FortiOS, FortiManager, FortiWeb, FortiProxy, and FortiAnalyzer when FortiCloud SSO is enabled, allowing attackers with a FortiCloud account to access devices registered to other users. Active exploitation has been observed, including unauthorized firewall configuration changes, account creation, and VPN modifications. Fortinet temporarily disabled FortiCloud SSO on January 26, 2026, reinstating it with mi

Mar 4CISA Alerts

Poland Energy Sector Cyber Incident Highlights OT and ICS Security Gaps

In December 2025, malicious cyber actors compromised operational technology (OT) and industrial control systems (ICS) at multiple Polish energy facilities, including renewable energy plants and a combined heat and power plant. Attackers gained access through vulnerable internet-facing edge devices, deployed wiper malware, damaged remote terminal units (RTUs), destroyed HMI data, and corrupted OT firmware. Although energy production continued, operators lost the ability to monitor or control the