Advisories

Cisco IOS: SNMP Denial Of Service and Remote Code Execution Vulnerability

ⓘ We are reaching out to let you know that Cisco IOS is vulnerable and can be exploited via Remote Code Execution by attacker to gain unauthorized access to critical systems. Attention constituent: A vulnerability has been discovered in the SNMP (Simple Network Management Protocol) subsystem of Cisco IOS and IOS XE software. An attacker who has certain SNMP credentials can exploit this by sending

Read More »

Microsoft Security: Windows Server Update Service

ⓘ We are reaching out to let you know that Windows Server Update Service is vulnerable and can be exploited via Remote Code Execution by attacker to gain unauthorized access to critical systems. Attention constituent: A critical vulnerability exists in Microsoft Windows Server Update Services (WSUS) that allows a remote, unauthenticated attacker to execute unauthorized code on affected systems. The issue is caused by improper

Read More »

Regional Spike in Medusa Ransomware

ⓘ We are reaching out to let you know there has been a sharp rise in Vadir infostealer infections globally, posing a growing threat to your data. Advisory Overview Advisory Type Technical Author Etienne Bowleg Date 16 September 2025 We have observed an increase in ransomware attacks in our region attributed to the Medusa group, one of the most active and aggressive ransomware campaigns currently

Read More »

Vidar Infostealer Spyware on The Rise

ⓘ We are reaching out to let you know there has been a sharp rise in Vadir infostealer infections globally, posing a growing threat to your data. Advisory Overview Advisory Type Technical Author Emilio Smith Date 15 September 2025 There has been a noticeable increase in Vidar spyware infections affecting systems worldwide. Vidar is a type of malicious software (spyware) that quietly collects sensitive information

Read More »

New Advisory: Critical SonicWall SSL-VPN Zero-Day Exploit

ⓘ We are reaching out to let you know about a zero-day security vulnerability in Gen 7 SonicWall firewalls that attackers are currently exploiting. Advisory Overview Advisory Type Technical Author Emilio Smith Date 15 August 2025 There is an ongoing threat of attacks from the Akira ransomware group targeting Gen 7 SonicWall firewalls where SSL-VPN has been enabled. This group is exploiting a zero-day vulnerability,

Read More »

Deepfake Investment Scam Continues to Evolve

ⓘ This advisory is about an ongoing scam campaign containing deepfake video content of senior government officials. The scams are designed to trick you into sharing your personal information or making a payment. Threat actors are creating “copycat” versions of local news websites to make their scams look legitimate, and solicit personal information and payments. They use social media websites like Facebook and WhatsApp to

Read More »

New Advisory: Fake Investment Scams Using Deepfake Videos

ⓘ This advisory addresses fake investment scams. CIRT-BS is urging the public to stay vigilant as new scams circulate online and fraudulent websites are impersonating local media houses to promote a fake investment opportunity linked to Central Bank of The Bahamas. To boost credibility and traffic, the scammers are using artificial intelligence to generate “deepfake” videos of various news personalities as well as Central Bank

Read More »

New Advisory: Active Exploitation of Ivanti Vulnerabilities

ⓘ Attackers are targeting Ivanti Connect Secure appliances using known vulnerabilities. Attackers may sometimes maintain persistent, undetected access even after patching systems. Advisory Overview Advisory Type Technical Author Marcus Knowles Date 17 April 2025 Ivanti and CISA recently reported active exploitation of several critical vulnerabilities in Ivanti network access security appliances. UNC5221, a China-linked threat group, uses these vulnerabilities to break into networks, deploy custom

Read More »

New Advisory: Critical Exploitation of Known Fortinet Vulnerabilities

ⓘ We are reaching out to let you know about ongoing attacks targeting Fortinet devices using known vulnerabilities. In some cases, the attackers can remain undetected even after patching. Attention constituent: Fortinet and CISA recently reported active exploitation of several known vulnerabilities in Fortinet devices. These include switches, firewalls, and other related products, many of which are widely used for secure remote access. Attackers are

Read More »
Scroll to Top
Skip to content