#StopRansomware: LockBit 3.0 | CISA
SUMMARY
Note: this joint Cybersecurity Advisory…
Note: this joint Cybersecurity Advisory…
Threat Actors Exploit Progress Telerik Vulnerability in U.S. Government IIS Server
SUMMARY
From November 2022 through early January…
From November 2022 through early January…
#StopRansomware: Royal Ransomware | CISA
SUMMARY
Note: This joint Cybersecurity Advisory…
Note: This joint Cybersecurity Advisory…
CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks
SUMMARY
The Cybersecurity and Infrastructure Security…
The Cybersecurity and Infrastructure Security…
#StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities
Note: This Cybersecurity Advisory (CSA) is part of an ongoing…
ESXiArgs Ransomware Virtual Machine Recovery Guidance
The Cybersecurity and Infrastructure Security Agency (CISA)…
Protecting Against Malicious Use of Remote Monitoring and Management Software
The Cybersecurity and Infrastructure Security Agency (CISA),…
#StopRansomware: Cuba Ransomware | CISA
Summary
Actions to take…
Actions to take…
#StopRansomware: Hive Ransomware | CISA
Summary
Actions to Take…
Actions to Take…
Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester
From mid-June through mid-July 2022, CISA conducted an incident…
#StopRansomware: Daixin Team | CISA
Summary
Actions to take…
Actions to take…
Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors
Summary
This joint Cybersecurity…
This joint Cybersecurity…
Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization
Actions to Help Protect Against APT Cyber Activity:• Enforce…
Control System Defense: Know the Opponent
Traditional approaches to securing OT/ICS do not adequately…
Iranian State Actors Conduct Cyber Operations Against the Government of Albania
The Federal Bureau of Investigation (FBI) and the Cybersecurity…
Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations
Summary
Actions to take…
Actions to take…
#StopRansomware: Vice Society | CISA
Summary
Actions to take…
Actions to take…
Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
Actions for ZCS administrators to take today to mitigate malicious…
AA22-223A: #StopRansomware: Zeppelin Ransomware
Original release date: August 11, 2022SummaryActions to take…
2021 Top Malware Strains | CISA
Agent Tesla
alert any any -> any any (msg:”HTTP…
alert any any -> any any (msg:”HTTP…
North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector
Summary
The Federal Bureau…
The Federal Bureau…
#StopRansomware: MedusaLocker | CISA
Summary
Actions to take…
Actions to take…
Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems
Actions to take today:• Install fixed builds, updating all…
People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices
Best Practices• Apply patches as soon as possible• Disable…
Karakurt Data Extortion Group | CISA
Actions to take today to mitigate cyber threats from ransomware:•…
Threat Actors Exploiting F5 BIG-IP CVE-2022-1388
Actions for administrators to take today:• Do not expose…