Alerts & Advisories

Filter By:
[UPDATED] Active Exploitation of Zero-Day Vulnerability in MOVEit Transfer
Progress Software has released security updates to address a zero-day vulnerability (CVE-2023-34362) in MOVEit Transfer, a managed file transfer software. The vulnerability is reportedly being actively exploited.
[UPDATED] Active Exploitation of Zero-Day Vulnerability in MOVEit Transfer
Critical Vulnerability in Barracuda Networks' Email Security Gateway
Barracuda Networks has released security updates addressing a critical vulnerability in its Email Security Gateway appliance. Users and administrators of affected product versions are advised to update to the latest versions immediately.
Critical Vulnerability in Barracuda Networks' Email Security Gateway
Security Bulletin 31 May 2023
SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.
Security Bulletin 31 May 2023
Critical Vulnerabilities in D-Link Products
D-Link has released security updates to address two critical vulnerabilities (CVE-2023-32165 and CVE-2023-32169) in its D-View 8 network management suite.
Critical Vulnerabilities in D-Link Products
Critical Vulnerabilities in Zyxel Firewall and VPN Products
Zyxel has released software updates to address two critical vulnerabilities (CVE-2023-33009 and CVE-2023-33010) affecting their firewall and VPN products.
Critical Vulnerabilities in Zyxel Firewall and VPN Products
Ongoing Ransomware Campaign exploiting Malicious Windows Kernel Drivers
An ongoing ransomware campaign has been found employing signed malicious Windows kernel drivers to evade detection by security software during attacks.
Ongoing Ransomware Campaign exploiting Malicious Windows Kernel Drivers
New Ongoing Malware Campaign Targeting Android Devices
There are reports of a new ongoing malware campaign targeting Android devices.
New Ongoing Malware Campaign Targeting Android Devices
Critical Vulnerability in GitLab
GitLab has released security updates to address a critical vulnerability (CVE-2023-2825) affecting GitLab Community Edition (CE) and Enterprise Edition (EE).
Critical Vulnerability in GitLab
Security Bulletin 24 May 2023
SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.
Security Bulletin 24 May 2023
Critical Vulnerability in Zyxel Firewalls
Zyxel has released security updates to address a critical vulnerability (CVE-2023-28771) affecting their firewall products. The vulnerability has a Common Vulnerability Scoring System (CVSSv3) score of 9.8 out of 10. The proof of concept (PoC) exploit script is reportedly publicly available.
Critical Vulnerability in Zyxel Firewalls
Joint Advisory on Protecting Yourself from Malicious QR Codes
The Cyber Security Agency of Singapore (CSA) and the Singapore Police Force (SPF) would like to remind the public of the dangers of malicious Quick Response (QR) codes and the measures individuals can take to protect themselves.
Joint Advisory on Protecting Yourself from Malicious QR Codes
Active Exploitation of Zero-Day Vulnerabilities in Apple WebKit
Apple has released security updates to address three zero-day vulnerabilities in Apple WebKit.
Active Exploitation of Zero-Day Vulnerabilities in Apple WebKit
Critical Vulnerability in vm2 Sandbox Library
vm2 has released security updates to address a critical vulnerability (CVE-2023-32314) in vm2 Sandbox Library.
Critical Vulnerability in vm2 Sandbox Library
Critical Vulnerabilities in Cisco Small Business Series Switches
Cisco has released security updates to address multiple critical vulnerabilities (CVE-2023-20159, CVE-2023-20160, CVE-2023-20161 and CVE-2023-20189) in their Small Business Series Switches.
Critical Vulnerabilities in Cisco Small Business Series Switches
Security Bulletin 17 May 2023
SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.
Security Bulletin 17 May 2023
Active Exploitation of Critical Vulnerability in PaperCut MF (Multifunction) and NG (Next Generation)
There are reports of active exploitation of a critical vulnerability (CVE-2023-27350) in PaperCut MF (Multifunction) and NG (Next Generation).
Active Exploitation of Critical Vulnerability in PaperCut MF (Multifunction) and NG (Next Generation)
Critical Vulnerability in WordPress Elementor Plugin
WordPress has released security updates to address a critical vulnerability (CVE-2023-32243) in their Essential Addons for Elementor plugin. Users and administrators of affected plugin versions are advised to upgrade to the latest versions immediately.
Critical Vulnerability in WordPress Elementor Plugin
Use-After-Free Vulnerability in Linux Kernel
Security researchers have discovered a vulnerability (CVE-2023-32233) in NetFilter, a Linux kernel module.
Use-After-Free Vulnerability in Linux Kernel
Critical Vulnerabilities in Aruba Access Points
Aruba has released security patches to address critical vulnerabilities in Aruba access points running InstantOS and ArubaOS 10. Users and administrators of affected product versions are advised to update to the latest version or apply the workaround where applicable.
Critical Vulnerabilities in Aruba Access Points
Security Bulletin 10 May 2023
SingCERT's Security Bulletin summarises the list of vulnerabilities collated from the National Institute of Standards and Technology (NIST)'s National Vulnerability Database (NVD) in the past week.
Security Bulletin 10 May 2023