The US Cybersecurity and Infrastructure Agency (CISA) has added two new flaws to its Known Exploited Vulnerabilities catalog – a Microsoft Windows flaw and an Adobe ColdFusion vulnerability. Federal agencies have been instructed to immediately apply patches to these flaws or stop using the software entirely due to the significant security risks they pose.

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force