All archived alerts and advisories Title TypeAdvisoryAlert StatusCRITICALHIGHMEDIUMLOW AudienceIndividuals & familiesSmall & medium businessesOrganisations & Critical InfrastructureGovernment Sort by Sort byDate updated (new to old)Date updated (old to new)Title (A-Z)Title (Z-A) Items per page 61218243036424854606672788490200 12 Jul 2021 Alert rating: High Kaseya VSA Supply-Chain Ransomware Attack Patch now available for Kaseya VSA platform. Audience focus: Organisations & Critical Infrastructure Government 09 Jul 2021 Advisory Advisory 2021-004: Active exploitation of ForgeRock Access Manager / OpenAM servers The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) has identified targeting and compromise of Australian organisations with vulnerable internet-accessible servers running ForgeRock Access Manager (ForgeRock AM). ForgeRock AM was previously known as OpenAM. The ASD's ACSC has observed malicious actors exploiting the vulnerability in ForgeRock AM/OpenAM to gain initial access to networks in multiple organisations, and facilitate further access within these networks. On 7 July 2021 the ASD's ACSC alerted organisations that this vulnerability was being actively exploited. This ASD's ACSC advisory provides recommendations for securing ForgeRock AM against vulnerability CVE-2021-35464, and advice on identifying potential successful exploitation of this vulnerability. Audience focus: Organisations & Critical Infrastructure Government 07 Jul 2021 Alert rating: High ForgeRock Open AM critical vulnerability The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has observed active exploitation of a vulnerability in ForgeRock OpenAM (reported as CVE-2021-35464) against a number of Australian organisations. The ASD’s ACSC strongly recommends organisations urgently apply available patches or workarounds to mitigate the risk of this vulnerability being exploited. Audience focus: Organisations & Critical Infrastructure Government 06 Jul 2021 Alert rating: Medium Cybercriminals targeting construction companies to conduct email scams Cybercriminals are targeting construction companies to conduct business email compromise scams. All parties to construction projects should be vigilant when emailing about invoices and bank details. Audience focus: Individuals & families Small & medium businesses Organisations & Critical Infrastructure 30 Jun 2021 Alert rating: Low Microsoft Releases Security Updates for Microsoft Edge Browser On June 24 2021, Microsoft released updates for their Edge Browser addressing two vulnerabilities that an attacker could exploit to inject and execute malicious code. Audience focus: Individuals & families Small & medium businesses Organisations & Critical Infrastructure Government 21 Jun 2021 Alert rating: High Google Releases Security Updates for Chrome Browser On June 17 2021, Google released Chrome version 91.0.4472.114 for Windows, Mac, and Linux. The patch notes for this version can be viewed at Chrome Release Note. Audience focus: Individuals & families Small & medium businesses Pagination Previous page ‹‹ Page 12 Next page ›› Alerts and Advisories View our recent alerts and advisories Alerts and Advisories Advice, guidance and publications Reports and statistics News Programs Glossary
