CISA and FBI Raise Alerts on Exploited Flaws and Expanding HiatusRAT Campaign

CISA and the FBI have issued alerts about active cyber threats. The FBI warns of HiatusRAT campaigns targeting web cameras and DVRs, while CISA added two vulnerabilities to its KEV catalog, urging agencies to apply remediation by January 6, 2025. Additionally, a ransomware campaign exploited vulnerabilities in DrayTek routers, impacting over 20,000 devices and involving multiple threat actors.