The Cybersecurity and Infrastructure Agency (CISA) has added three vulnerabilities to its Known Exploited Vulnerabilities catalog, one of which is a critical flaw in Sophos Web Appliance that was patched in April 2023. Despite the patch, active exploitation of the vulnerability has been noted, highlighting the common practice among attackers of targeting older vulnerabilities.
Senators Propose Bipartisan Health Care Cybersecurity & Resiliency Act
Senators have put forward the bipartisan Health Care Cybersecurity and Resiliency Act.
