Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts

Alerts

Timely information about security issues, vulnerabilities, and exploits.

556 articles

12 March 2025

Active Exploitation of Critical Vulnerabilities in Ivanti Endpoint Manager

Ivanti has released updates addressing critical vulnerabilities in Ivanti Endpoint Manager products. Users and administrators of the affected products are advised to update to the latest versions immediately.

Alerts

12 March 2025

March 2025 Monthly Patch

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

Alerts

7 March 2025

Critical Vulnerability in Elastic Kibana

Elastic has released security updates addressing a critical vulnerability affecting their Kibana software. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

28 February 2025

Ongoing Astaroth Phishing Campaign Targeting Gmail, Microsoft and Third-Party Authentication Services

There are reports of an ongoing Astaroth phishing campaign targeting Gmail, Microsoft, and third-party logins. Attackers are able to bypass Multi-Factor Authentication (MFA), stealing credentials in real-time.

Alerts

27 February 2025

Critical Vulnerability in Palo Alto Networks PAN-OS

There have been reports of active exploitation of a critical authentication bypass vulnerability (CVE-2025-0108) in Palo Alto Networks PAN-OS. Administrators of affected systems are strongly advised to update to the latest version immediately.

Alerts

25 February 2025

Critical Vulnerability in SonicWall SonicOS

SonicWall has released security updates addressing a critical vulnerability (CVE-2024-53704) affecting their SonicOS software.

Alerts

20 February 2025

Critical Vulnerability in Juniper Networks' Products

Juniper Networks has released security updates addressing a critical vulnerability affecting their Session Smart Routers. Users and administrators of affected products are advised to update to the latest versions immediately.

Alerts

19 February 2025

Active Exploitation of Cisco Internetworking Operating System eXtended Edition

There have been reports of active exploitation of vulnerabilities (CVE-2023-20198 and CVE-2023-20273) in unpatched internet-facing Cisco Internetworking Operating System eXtended Edition (IOS XE) software.

Alerts

12 February 2025

February 2025 Monthly Patch

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

Alerts

12 February 2025

High-Severity Vulnerability in Fortinet Products

Fortinet has released security updates addressing a authentication bypass vulnerability affecting their FortiOS and FortiProxy products.

Alerts