Cybersecurity

Joint Cybersecurity Advisory: New Sandworm Malware Cyclops Blink Replaces VPNFilter

The Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI, the National Security Agency (NSA), and the United Kingdom’s National Cyber Security Centre (NCSC-UK), have just released a joint Cybersecurity Advisory regarding a threat actor known as Sandworm (a.k.a., Voodoo Bear, Static Kitten, et. al.) that has been observed using a new malware, referred to in the advisory as Cyclops Blink. Government agencies have previously attributed the Sandworm actor to Russian intelligence services.

Read more about Joint Cybersecurity Advisory: New Sandworm Malware Cyclops Blink Replaces VPNFilter

Security Awareness – Phishing Method Exploits Remote Access to Circumvent MFA

A new phishing technique is helping threat actors bypass multi-factor authentication (MFA) by tricking victims into logging into their accounts directly on adversary-controlled servers using the VNC screen sharing system. MFA protocols have become one of the best defenses against phishing compromises and other malicious cyber activity.

Read more about Security Awareness – Phishing Method Exploits Remote Access to Circumvent MFA

Joint Cybersecurity Advisory: Iranian APT MuddyWater

The Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI, the U.S. Cyber Command Cyber National Mission Force (CNMF), and the United Kingdom’s National Cyber Security Centre (NCSC-UK), just published a joint Cybersecurity Advisory outlining activities of the Iranian government-sponsored advanced persistent threat (APT) actors, known as MuddyWater. The APT group MuddyWater has been observed conducting cyber espionage and other malicious cyber activities targeting government and other critical infrastructure entities, across the globe.

Read more about Joint Cybersecurity Advisory: Iranian APT MuddyWater

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 24, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 24, 2022

Conti Ransomware and TrickBot Threat Actors Reportedly Merge Operational Activity

Security researchers at Advanced Intelligence (AdvIntel) believe threat actors associated with TrickBot malware have partnered with the Conti ransomware gang, according to a recent report. TrickBot is a highly modular, multi-stage malware that has been active since 2016. TrickBot has survived a takedown attempt and helped relaunch the Emotet malware.

Read more about Conti Ransomware and TrickBot Threat Actors Reportedly Merge Operational Activity

CISA Publishes Free Cybersecurity Tools for Network Defenders

The Cybersecurity and Infrastructure Security Agency (CISA) has compiled and published a list of free cybersecurity services and tools to help organizations reduce cybersecurity risk and strengthen resiliency. Before reviewing the free tools and services, CISA strongly recommends organizations take specific foundational measures to implement a strong cybersecurity program.

Read more about CISA Publishes Free Cybersecurity Tools for Network Defenders

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 22, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 22, 2022

FBI PSA: Business Email Compromise - Virtual Meeting Platforms

The FBI has published a Public Service Announcement (PSA) regarding the increasing practice of Business Email Compromise (BEC) in conjunction with virtual meeting platforms to commit fraud against companies and their employees.

Read more about FBI PSA: Business Email Compromise - Virtual Meeting Platforms

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 17, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

None

Alerts, Updates, and Bulletins:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 17, 2022

Russian State-Sponsored Actors Target Cleared Defense Contractor Networks

The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the National Security Agency (NSA) have released a joint Cybersecurity Advisory (AA22-047A) highlighting ongoing targeting of U.S. cleared defense contractors (CDCs) by Russian state-sponsored cyber actors.

Read more about Russian State-Sponsored Actors Target Cleared Defense Contractor Networks

You are here

Cybersecurity

Joint Cybersecurity Advisory: New Sandworm Malware Cyclops Blink Replaces VPNFilter

Security Awareness – Phishing Method Exploits Remote Access to Circumvent MFA

Joint Cybersecurity Advisory: Iranian APT MuddyWater

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 24, 2022

Conti Ransomware and TrickBot Threat Actors Reportedly Merge Operational Activity

CISA Publishes Free Cybersecurity Tools for Network Defenders

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 22, 2022

FBI PSA: Business Email Compromise - Virtual Meeting Platforms

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 17, 2022

Russian State-Sponsored Actors Target Cleared Defense Contractor Networks

Pages

You are here

Cybersecurity

Pages

Footer Email Signup