Cybersecurity

Joint Cybersecurity Advisory – #StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit Citrix Bleed Vulnerability

Today, CISA, the FBI, the Multi-State Information Sharing & Analysis Center (MS-ISAC), and the Australian Signals Directorate’s Australian Cyber Security Center (ASD’s ACSC) released a joint Cybersecurity Advisory (CSA), #StopRansomware: LockBit Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability (along with an accompanying analysis report MAR-10478915-1.v1 Citrix Bleed), in response to LockBit 3.0 ransomware affiliates and multiple threat actor groups exploiting CVE-2023-4966.

Read more about Joint Cybersecurity Advisory – #StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit Citrix Bleed Vulnerability

Patch Now: Critical Vulnerability Exposes CrushFTP Users to Severe Risks

A critical vulnerability (CVE-2023-43177) in CrushFTP allows hackers to access files, execute code, and steal passwords. Although a fix was issued in version 10.5.2, a recent public exploit by Converge demands immediate updates for CrushFTP users. This exploit lets attackers read, delete files, and potentially gain total control over systems using specific web ports and functions in CrushFTP.

Read more about Patch Now: Critical Vulnerability Exposes CrushFTP Users to Severe Risks

Supplemental Cyber Highlights – November 21, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure

Read more about Supplemental Cyber Highlights – November 21, 2023

Joint Cybersecurity Advisory – #StopRansomware: Rhysida Ransomware

Yesterday, CISA, the FBI, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint Cybersecurity Advisory (CSA), “#StopRansomware: Rhysida Ransomware”, to provide network defenders with known Rhysida ransomware indicators of compromise (IOCs), detection methods, and tactics, techniques, and procedures (TTPs) identified through investigations as recently as September 2023.

Read more about Joint Cybersecurity Advisory – #StopRansomware: Rhysida Ransomware

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – November 16, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Fourteen Industrial Control Systems Advisories

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – November 16, 2023

CISA Releases Roadmap for Artificial Intelligence Adoption

This week, CISA released its Roadmap for Artificial Intelligence—in alignment with White House Executive Order 14110: Safe, Secu

Read more about CISA Releases Roadmap for Artificial Intelligence Adoption

Supplemental Cyber Highlights – November 16, 2023

Critical Infrastructure

Read more about Supplemental Cyber Highlights – November 16, 2023

Ransomware Group Files SEC Complaint: Vigilante Report or Blackmail, What’s Next?

by Jennifer Lyn Walker

Read more about Ransomware Group Files SEC Complaint: Vigilante Report or Blackmail, What’s Next?

CISA and ACSC Release Business Continuity in a Box Product

Yesterday, CISA and the Australian Cyber Security Centre (ACSC) jointly published Business Continuity in a Box. This product, developed by ACSC with contributions from CISA, aims to assist small to medium-sized organizations with swiftly and securely standing up critical business functions during or following a cyber incident.

Read more about CISA and ACSC Release Business Continuity in a Box Product

Joint Cybersecurity Advisory – #StopRansomware: Royal Ransomware (Updated November 14, 2023)

November 14, 2023

The FBI and CISA recently published an update to the joint Cybersecurity Advisory “#StopRansomware: Royal Ransomware.” The updated advisory provides network defenders with additional information on tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with Royal ransomware variants. FBI investigations identified these TTPs and IOCs as recently as June 2023.

Read more about Joint Cybersecurity Advisory – #StopRansomware: Royal Ransomware (Updated November 14, 2023)

You are here

Cybersecurity

Joint Cybersecurity Advisory – #StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit Citrix Bleed Vulnerability

Patch Now: Critical Vulnerability Exposes CrushFTP Users to Severe Risks

Supplemental Cyber Highlights – November 21, 2023

Joint Cybersecurity Advisory – #StopRansomware: Rhysida Ransomware

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – November 16, 2023

CISA Releases Roadmap for Artificial Intelligence Adoption

Supplemental Cyber Highlights – November 16, 2023

Ransomware Group Files SEC Complaint: Vigilante Report or Blackmail, What’s Next?

CISA and ACSC Release Business Continuity in a Box Product

Joint Cybersecurity Advisory – #StopRansomware: Royal Ransomware (Updated November 14, 2023)

Pages

You are here

Cybersecurity

Pages

Footer Email Signup