Threat Advisories

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Securedyouadm—June 9, 2025 0

CVE-2025-32433 Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

SentinelOne Confirms Security After Supplier Hack

Blood Supply Faces Ongoing Challenges After Vendor Cyberattack

The aftermath of the June 2024 cyberattack on a major blood supply vendor continues to reverberate through the healthcare sector, causing significant disruptions in the availability of vital blood products. Despite efforts to stabilize the supply chain, hospitals and clinics are still grappling with shortages that threaten patient care and medical procedures. The attack, which targeted the vendor’s digital infrastructure, resulted in the temporary loss of critical data and operational capabilities, underscoring the vulnerability of healthcare systems to cyber threats.

Efforts to restore normalcy have been ongoing since the incident, with the vendor implementing enhanced security measures and working closely with law enforcement and cybersecurity experts. However, the recovery process has been arduous, with ripple effects felt across the nation. Blood banks and healthcare providers have been forced to implement contingency plans, including increased reliance on local donations and inter-facility cooperation to meet urgent needs.

This situation has highlighted the critical importance of robust cybersecurity measures in safeguarding healthcare infrastructure. The attack served as a wake-up call, prompting industry-wide discussions on strengthening defenses against similar threats. Experts have emphasized the need for comprehensive risk assessments and the adoption of advanced technologies to protect sensitive data and ensure continuity of services.

In response to the sustained impact on blood supplies, public health officials have issued calls for increased donations and community support. Blood drives have been ramped up nationwide, with a particular focus on encouraging eligible donors to give regularly. Community outreach and awareness campaigns are also being intensified to educate the public about the ongoing need for blood and the steps being taken to address the crisis.

As the healthcare sector navigates the complexities of this challenge, collaboration and innovation remain key to overcoming the obstacles posed by the cyberattack. Stakeholders are committed to not only restoring the blood supply but also building a more resilient system capable of withstanding future disruptions. The lessons learned from this incident are expected to drive long-term improvements in the security and reliability of critical healthcare services.

Leave a Reply