Search Results

The default setting for search results displays All Content. If you prefer to see recent content only, please adjust the date filter.

Filter your results:

Types

Topics

911 Results Found

Public

H-ISAC TLP White Threat Bulletin VoidProxy: A New and Evasive Phishing-as-a-Service Framework

On September 11, 2025, Okta discovered a sophisticated Phishing-as-a-Service framework named VoidProxy. Due to its evasive capabilities and modular design, it has emerged as a significant threat.
Public

FBI Flash TLP Clear: Cyber Criminal Groups UNC6040 and UNC6395 Compromising Salesforce Instances

 
Public

H-ISAC TLP White Threat Bulletin: Critical SAP S/4HANA Vulnerability Actively Exploited (CVE-2025-42957) Sept. 9, 2025

Exploitation of the SAP S/4HANA flaw, tracked as CVE-2025-42957, has been disclosed.
Public

H-ISAC TLP White FS-ISAC Artificial Intelligence White Paper Series September 9, 2025

FS-ISAC has released several white papers discussing AI best practices.
Public

H-ISAC TLP White Hacking Healthcare - Weekly Blog - August 28, 2025

This week, Health-ISAC®'s Hacking Healthcare® examines evidence that the HIPAA Security Rule effort launched at the end of the Biden administration may be moving ahead under the Trump administration and more.
Public

H-ISAC TLP White Vulnerability Report Citrix Discloses a Trio of Vulnerabilities Affecting NetScaler ADC and NetScaler Gateway

On August 26, 2025, Citrix released a security bulletin (CTX694938) to address three critical vulnerabilities affecting its NetScaler ADC and NetScaler Gateway products: CVE-2025-7775, CVE-2025-7776, and CVE-2025-8424.
Member

H-ISAC TLP White Threat: Russian State-Sponsored Espionage Group Static Tundra Compromises Unpatched End-Of-Life Network Devices

A highly sophisticated Russian state-sponsored cyber espionage group, known as Static Tundra, has been targeting organizations of strategic interest within critical infrastructure verticals.
Public

H-ISAC TLP White Threat Bulletin: Publicly Available Exploit Code Chains Critical SAP NetWeaver Flaws

On August 15, 2025, exploit code was released that chains two critical vulnerabilities in SAP NetWeaver’s Visual Composer to bypass authentication and achieve remote code execution.
Public

H-ISAC TLP White Threat Bulletin: Exploit Code Released for Fortinet FortiWeb Flaw CVE-2025-52970 - August 18, 2025

On August 12, 2025, FortiGuard Labs published an advisory for a flaw in FortiWeb tracked as CVE-2025-52970.
Public

H-ISAC TLP White Threat Bulletin Cisco Discloses Max Severity Vulnerability in Firewall Management Center

On August 14, 2025, Cisco disclosed a critical remote code execution (RCE) vulnerability.