Attackers are eyeing known vulnerabilities in the Zimbra collaboration suite to target government and private sector organizations.
APT teams are still exploiting the Log4Shell flaw in VMware Horizon and Unified Access Gateway, six months after the initial disclosure.
The Karakurt data extortion group is stealing sensitive information from enterprises and holding it for ransom, CISA warns.
CISA is mandating federal agencies to apply updates that fix several serious VMware bugs.
Overall, the proposed fiscal year 2023 budget represents an 18 percent increase over the requested budget for fiscal year 2022, reflecting a "significantly increased investment" in CISA.