CISA encourages OpenSSL users to deploy security update
The Cybersecurity & Infrastructure Security Agency encourages OpenSSL users and administrators to upgrade to version 3.0.7 to patch two high-severity vulnerabilities that threat actors could leverage to crash or take control of a computer system. Releasing the software update yesterday, OpenSSL downgraded the vulnerabilities from critical to high severity.
John Riggi, AHA’s national advisor for cybersecurity and risk, encourages all hospitals and health systems to “patch it before the 'bad guys' exploit it.”
The Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center this week alerted the health sector to the OpenSSL vulnerabilities and encouraged organizations to test and deploy the patch once available.
Related News Articles
Headline
The Administration for Strategic Preparedness and Response has released a new cybersecurity module for organizations to conduct risk assessments. The free…
Perspective
As the world has learned in recent years, today’s conflicts are fought with many weapons, and cyber warfare is an integral part of the arsenal.As of this…
Headline
The FBI is reminding critical infrastructure organizations to implement mitigations from a June 2025 fact sheet on potential actions by Iranian-affiliated…
Headline
The Cybersecurity and Infrastructure Security Agency Feb. 26 released a report that updates findings from last year on RESURGE malware used to gain covert…
Headline
U.S. and international agencies Feb. 25 released guidance on protecting Cisco Software-defined Wide-area Networking systems from exploitation by malicious…
Headline
The National Security Agency has released two phases of its Zero Trust Implementation Guidelines for organizations to improve their zero trust architecture.…