A joint advisory by CISA, urges organizations to implement secure by design practices and prioritize patching known exploited vulnerabilities to reduce risk of compromise.
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), Australian Signals Directorate’s Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), New Zealand National Cyber Security Centre (NZ NCSC), Computer Emergency Response Team New Zealand (CERT NZ) and the United Kingdom’s National Cyber Security Centre (NCSC-UK) recently published an advisory on the common vulnerabilities and exposures (CVEs), to include associated common weakness enumeration (CWE), that were routinely and frequently exploited by malicious actors last year.