The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated that federal agencies patch a maximum-severity vulnerability in the Widget Factory Joomla Content Editor (JCE) plugin by Friday. The flaw is currently being exploited in active attacks.
CISA issued the emergency directive after discovering that threat actors are actively leveraging the critical vulnerability in JCE, a widely-used content editing plugin for Joomla websites. The agency set an aggressive patching deadline to limit exposure across federal systems.
The Widget Factory JCE plugin serves as an essential tool for Joomla administrators, providing enhanced content editing capabilities. However, the newly discovered maximum-severity flaw creates a direct pathway for attackers to compromise affected systems.
Federal agencies must prioritize this patch above routine updates given the active exploitation. CISA's emergency directive carries binding force for all civilian federal agencies, requiring immediate remediation efforts across their IT infrastructure.
The vulnerability affects both public and private sector organizations using Joomla. Organizations operating JCE should treat this patch as urgent, regardless of whether they received a direct CISA order. Private companies managing critical infrastructure or handling sensitive data should accelerate their patch timelines accordingly.
CISA regularly issues binding operational directives for critical vulnerabilities actively exploited by adversaries. This process ensures federal systems maintain baseline security posture against threats with demonstrated real-world impact.
Administrators should verify their Joomla installations are running JCE and check their current plugin version immediately. Patch deployment should follow standard change management procedures while maintaining expedited timelines for maximum-severity flaws.
The agency continues monitoring the threat landscape for additional exploitation attempts. Organizations unable to patch by Friday should implement compensating controls to restrict access to affected systems until updates can be deployed.
CISA provides additional guidance and technical details on its website for administrators requiring deployment assistance.
Kodak has confirmed a security breach after the ShinyHunters extortion gang gained access to company data. The imaging company is working with external cybersecurity experts to investigate the incident.
Cyber crimes now account for roughly one-third of all recorded crimes in some Asian countries, with scams emerging as the most prevalent and costly category, according to a new Interpol report.
Apple plans to move its Hide My Email feature to a different domain in the coming weeks, a change that could reduce the privacy protection the tool currently provides.