H-ISAC: White Reports
A maximum-severity vulnerability in HPE OneView, tracked as CVE-2025-37164, is being actively exploited in the wild.
On January 7, 2026, Cisco released security updates to address a medium-severity vulnerability, tracked as CVE-2026-20029, affecting its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) network access control solutions.
On January 6, 2026, Veeam released security updates to address four vulnerabilities affecting its Backup & Replication solution.
On December 2nd, the Health-ISAC Fall Americas Summit convened healthcare leaders and regulators to address the evolving medical device cybersecurity landscape.
This week, Health-ISAC®'s Hacking Healthcare® Hacking Healthcare examines newly amended provisions to China’s Cybersecurity Law.
On December 2, 2025, Microsoft experienced a widespread outage in its Defender Portal that prevented many organizations from accessing critical security alerts and threat-hunting data. According to reports, the outage lasted for over 10 hours.
This week, Health-ISAC®'s Hacking Healthcare® examines the recent introduction of a United Kingdom (UK) legislative bill that would update its Network and Information Security (NIS) regulations.
H-ISAC TLP White: Daily Cyber Headlines for November 16, 2025.
On October 6, 2025, security researchers at Defused reported a path traversal flaw in Fortinet’s FortiWeb web application firewall (WAF) being exploited in-the-wild as a zero-day since October 2025.
H-ISAC TLP White: Daily Cyber Headlines for November 13, 2025.