Active Threat Alerts

Russian Military Cyber Actors Target US and Global Critical Infrastructure

Summary
The Federal Bureau of Investigation (FBI),…
September 6, 2024/by SecureTech

#StopRansomware: RansomHub Ransomware | CISA

Summary
Note: This joint Cybersecurity Advisory…
August 30, 2024/by SecureTech

Iran-based Cyber Actors Enabling Ransomware Attacks on US Organizations

Summary
The Federal Bureau of Investigation (FBI),…
August 29, 2024/by SecureTech

Best Practices for Event Logging and Threat Detection

Executive Summary
This publication defines a baseline…
August 21, 2024/by SecureTech

CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA has added six new vulnerabilities to its Known…
August 14, 2024/by SecureTech

North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs

The U.S. Federal Bureau of Investigation (FBI) and the following…
July 25, 2024/by SecureTech

CISA Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth

EXECUTIVE SUMMARY
In early 2023, the Cybersecurity…
July 11, 2024/by SecureTech

People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action

This advisory, authored by the Australian Signals Directorate’s…
July 9, 2024/by SecureTech

#StopRansomware: Black Basta | CISA

SUMMARY
Note: This joint Cybersecurity Advisory…
May 11, 2024/by SecureTech

#StopRansomware: Akira Ransomware | CISA

SUMMARY
Note: This joint Cybersecurity Advisory…
April 18, 2024/by SecureTech

Threat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways

SUMMARY
The Cybersecurity and Infrastructure Security…
March 2, 2024/by SecureTech

#StopRansomware: Phobos Ransomware | CISA

SUMMARY
Note: This joint Cybersecurity Advisory…
March 1, 2024/by SecureTech

SVR Cyber Actors Adapt Tactics for Initial Cloud Access

How SVR-Attributed Actors are Adapting to the Move…
February 27, 2024/by SecureTech

PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure

SUMMARY
The Cybersecurity and Infrastructure Security…
February 7, 2024/by SecureTech

Known Indicators of Compromise Associated with Androxgh0st Malware

SUMMARY
The Federal Bureau of Investigation (FBI)…
January 16, 2024/by SecureTech

#StopRansomware: Play Ransomware | CISA

SUMMARY
Note: This joint Cybersecurity Advisory…
December 21, 2023/by SecureTech

#StopRansomware: ALPHV Blackcat | CISA

SUMMARY
Note: This joint Cybersecurity Advisory…
December 20, 2023/by SecureTech

Enhancing Cyber Resilience: Insights from the CISA Healthcare and Public Health Sector Risk and Vulnerability Assessment

SUMMARY
In January 2023, the Cybersecurity and Infrastructure…
December 15, 2023/by SecureTech

Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally

SUMMARY
The U.S. Federal Bureau of Investigation…
December 13, 2023/by SecureTech

Russian FSB Cyber Actor Star Blizzard Continues Worldwide Spear-phishing Campaigns

The Russia-based actor is targeting organizations…
December 7, 2023/by SecureTech

Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers

SUMMARY
The Cybersecurity and Infrastructure Security…
December 5, 2023/by SecureTech

IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities

SUMMARY
The Federal Bureau of Investigation (FBI),…
December 2, 2023/by SecureTech

#StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability

SUMMARY
Note: This joint Cybersecurity Advisory…
November 22, 2023/by SecureTech

Scattered Spider | CISA

SUMMARY
The Federal Bureau of Investigation (FBI)…
November 17, 2023/by SecureTech

#StopRansomware: Rhysida Ransomware | CISA

SUMMARY
Note: This joint Cybersecurity Advisory…
November 16, 2023/by SecureTech