Cyber Watch Live Feed
Cyber Watch helps businesses, nonprofits, home offices, and local organizations monitor current CISA advisories, known exploited vulnerabilities, and major provider outage resources in one practical dashboard.
If your systems, software, cloud tools, or vendors appear in a major alert and your IT provider has not notified you, Sasha Digital Solutions can provide an independent investigation, remediation plan, or second-opinion review.
Live CISA Advisory Feed
This section displays recent advisories from CISA. Review official details before taking action, and contact SashaDS if you need help determining whether your environment is affected.
Published: Jun 26, 2026
CISA and the Federal Bureau of Investigation (FBI) issued an updated Public Service Announcement (PSA) warning of Russian Intelligence Services (RIS) cyber threat actors targeting commercial messaging applications in ongoing phishing campai...
Published: Jun 25, 2026
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-12569 PTC Windchill and FlexPLM Improper Input Validation Vulnerability CVE-2026-20230 C...
Published: Jun 25, 2026
View CSAF Summary Successful exploitation of these vulnerabilities could could provide an unauthenticated user with complete root-level access and control of the system. The following versions of Daktronics Controller Firmware are affected:...
Published: Jun 25, 2026
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. The following versions of Delta Electronics DTM Soft are affected: DTMSoft vers:all/* CVSS Vendor Equipment Vulne...
Published: Jun 25, 2026
View CSAF Summary Successful exploitation of this vulnerability in a custom integration version could allow an attacker to steal an authenticated clinician's token via a crafted link. The following versions of OHIF Viewers DICOM are affecte...
Known Exploited Vulnerabilities
CISA's KEV catalog helps prioritize vulnerabilities that are already being exploited. If your organization uses affected vendors or products, these should be reviewed quickly.
If your organization uses PTC Windchill and FlexPLM, review exposure, confirm patch status, and prioritize remediation. Known exploited vulnerabilities should not wait in the normal patch queue.
CISA Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
If your organization uses Cisco Unified Communications Manager, review exposure, confirm patch status, and prioritize remediation. Known exploited vulnerabilities should not wait in the normal patch queue.
CISA Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
If your organization uses Lantronix EDS5000, review exposure, confirm patch status, and prioritize remediation. Known exploited vulnerabilities should not wait in the normal patch queue.
CISA Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
If your organization uses Ubiquiti UniFi OS, review exposure, confirm patch status, and prioritize remediation. Known exploited vulnerabilities should not wait in the normal patch queue.
CISA Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
If your organization uses Ubiquiti UniFi OS, review exposure, confirm patch status, and prioritize remediation. Known exploited vulnerabilities should not wait in the normal patch queue.
CISA Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
If your organization uses Ubiquiti UniFi OS, review exposure, confirm patch status, and prioritize remediation. Known exploited vulnerabilities should not wait in the normal patch queue.
CISA Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
Major Service Outage Watch
Public status pages can help identify major incidents, but they may not show every tenant-specific or account-specific problem. If your business is affected and your provider has not notified you, SashaDS can perform an independent review.
Public status information for Azure services and regions. Microsoft 365 tenant-specific service health may require admin-center access.
Open Status PageMicrosoft 365 service health for tenant-specific issues is normally reviewed inside the Microsoft 365 admin center.
Open Status PagePublic AWS service health and regional outage information.
Open Status PagePublic Google Cloud service health and incident information.
Open Status PageCloudflare network, DNS, CDN, WAF, and platform status information.
Open Status PageShopify platform status for stores, checkout, admin, and related services.
Open Status PageAlready Have an MSP?
If your business uses software, cloud services, firewall products, remote access tools, or platforms listed in major advisories, your IT provider should help determine whether you are affected.
If you are learning about threats from the news before your provider contacts you, Sasha Digital Solutions can provide a second-opinion review.
No MSP or IT Provider?
SashaDS can help review suspicious activity, exposed systems, breach notices, vulnerability alerts, account compromise concerns, website issues, and cloud-service problems.
The goal is not panic. The goal is triage, containment, remediation, and better prevention going forward.
Trusted Cybersecurity Resources
Cyber Watch highlights trusted resources for awareness and reporting. These resources are useful for businesses, nonprofits, and home users.
CISA provides cybersecurity advisories, alerts, and guidance for organizations, businesses, and the public.
Visit CISA AdvisoriesCISA's Known Exploited Vulnerabilities catalog helps organizations prioritize vulnerabilities known to be exploited.
Visit KEV CatalogIC3 is used to report internet crimes including fraud, business email compromise, ransomware, and online scams.
Visit IC3The FTC publishes scam alerts and consumer guidance related to fraud, impersonation, identity theft, and online threats.
Visit FTC AlertsLet us review the threat, outage, vulnerability, account issue, or suspicious activity and identify practical next steps.
Request Cyber Watch Investigation