You are here

Home » Cybersecurity

Cybersecurity

Joint Cybersecurity Advisory - #StopRansomware - Ransomware Attacks on Critical Infrastructure Fund DPRK Espionage Activities

The Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the FBI, the Department of Health and Human Services (HHS), and Republic of Korea’s Defense Security Agency and National Intelligence Service just released a joint Cybersecurity Advisory (CSA) to warn network defenders of malicious activity targeting U.S. and South Korean Healthcare and Public Health (HPH) Sector organizations as well as other critical infrastructure sectors.  

Joint Cybersecurity Advisory - ESXiArgs Ransomware Virtual Machine Recovery Guidance

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI published a joint Cybersecurity Advisory (CSA) in response to the ongoing ransomware campaign known as “ESXiArgs.” This CSA provides guidance for network defenders on how to use the recovery script that CISA released as well as recommended mitigations. Members are encouraged to review the advisory, but be advised that recovery script as reported in

Threat Awareness - Use of Microsoft OneNote to Spread Malicious Payloads Rising

SC Magazine has written an article covering the rise of a new malware trend: using Microsoft’s OneNote to distribute payloads. Researchers from both Proofpoint and Sophos have observed various threat actors executing campaigns that deliver malware through OneNote attachments, likely as part of criminals’ continued attempts to test out new methods of bypassing threat detection software.

Threat Awareness - Medusa Botnet Malware Returns with Enhanced Capabilities, Ransomware Module

Bleeping Computer has written an article discussing the latest strain of the Medusa malware, which has existed in one form or another since 2015. While primarily a DDoS botnet, researchers at Cyble have discovered a new variant in the wild that’s based on the Mirai botnet’s source code leak from 2016, giving Medusa extensive new capabilities. However, the main concern is the addition of a ransomware module that gives Medusa more flexibility in how it can be used once it infects a machine.

Threat Awareness – New ISAC Report Finds Increase in DDoS Attacks Targeting the Financial Services Industry

FS-ISAC and the cloud company Akamai recently published a joint report, The Evolution of DDoS: Return of the Hacktivists, to educate industry on the somewhat renewed increase of Distributed Denial-of-Service (DDoS) attacks, the business risks it poses, and best practices on mitigation to better combat these incidents.

Cyber Resilience – MITRE Releases Tool to Help Design Cyber-Resilient Systems

MITRE recently released the Cyber Resiliency Engineering Framework (CREF) Navigator, a free visualization tool that was developed to help engineers with designing cyber-resilient systems. The tool allows organizations to customize their cyber-resiliency goals, objectives, and techniques as aligned by NIST SP 800-160, which outlines standards on developing cyber-resilient systems.

Security Awareness – Safer Internet Day 2023: How to Manage Your Data and Privacy Online

Today, February 7, 2023, is Safer Internet Day, an awareness day established by the European Union’s SafeBorders project in 2005 and maintained by the Insafe network. Its purpose is to promote awareness of how internet citizens can protect themselves from those attempting to use the internet in a harmful manner.

Pages

Subscribe to Cybersecurity