It'd be useful if someone at State could inform CISA of the meaning of the term "nation-state", unless CISA is very subtly trying to signal which particular countries these attacks are coming from, since nation-states are a small subset of all countries.
Context for people reading the comments:<p>CVE-2022-47966 is a Zoho vulnerability, while the other is a fortigate one, both are RCEs
Both have had public PoCs published at least early this year, there's a bunch more of publicly known RCEs that are still unpatched and used by some tens of thousands of machines, according to Shodan
Can we just eliminate bad actor nation states like China and Israel from the Internet? Filter all packets coming from or going to there, have the backbone spyware sever proxy connections, etc? One year the first time, forever with repeat offenders.