Advisories

Our advisories highlight current cyber security threats and vulnerabilities in New Zealand, and provide guidance on how to mitigate their impact.

Subscribe to our updates above to be notified as soon as we publish an advisory.

Advisory

DrayTek Router RCE vulnerability

5 August 2022

Advisory

Active exploitation of RCE in Java’s Spring Framework

1 April 2022

Advisory

QNAP and Asustor NAS vulnerabilities exploited to deploy ransomware

22 February 2022

Advisory

Log4j RCE 0-day actively exploited

20 December 2021

Advisory

Critical Vulnerability in Palo Alto VPN

12 November 2021

Advisory

Critical vulnerability in Windows’ Kerberos protocol

11 November 2021

Advisory

Microsoft Exchange Autodiscover exposing credentials

24 September 2021

Advisory

Active scanning for VMware vCenter Vulnerability

23 September 2021

Advisory

Apple iMessage vulnerability being exploited

14 September 2021

Advisory

Active scanning for Microsoft Exchange Proxyshell vulnerability

8 August 2021

Advisory

SonicWall EOL Devices Targeted by Ransomware

15 July 2021

Advisory

Vulnerability in SolarWinds Serv-U Fileserver being Exploited

13 July 2021

Advisory

Kaseya management software being used to deploy ransomware

12 July 2021

Advisory

Critical vulnerabilities in Microsoft Windows Print Spooler service

2 July 2021

Advisory

Vulnerability in Adobe Acrobat and Reader being actively exploited

12 May 2021

Advisory

Update released for critical vulnerabilities in Exim

5 May 2021