The US Cybersecurity and Infrastructure Agency (CISA) has added two new flaws to its Known Exploited Vulnerabilities catalog – a Microsoft Windows flaw and an Adobe ColdFusion vulnerability. Federal agencies have been instructed to immediately apply patches to these flaws or stop using the software entirely due to the significant security risks they pose.

North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to