Active Threat Alerts

APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus

Summary

This Joint Cybersecurity…
September 17, 2021/by SecureTech

Ransomware Awareness for Holidays and Weekends

Immediate Actions You Can Take Now to Protect Against Ransomware•…
August 31, 2021/by SecureTech

BadAlloc Vulnerability Affecting BlackBerry QNX RTOS

On August 17, 2021, BlackBerry publicly disclosed that its…
August 18, 2021/by SecureTech

Top Routinely Exploited Vulnerabilities | CISA

This Joint Cybersecurity Advisory was coauthored by the U.S.…
July 28, 2021/by SecureTech

Chinese State-Sponsored Cyber Operations: Observed TTPs

This advisory uses the MITRE Adversarial Tactics, Techniques,…
July 21, 2021/by SecureTech

Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013

This Advisory uses the MITRE Adversarial Tactics, Techniques,…
July 20, 2021/by SecureTech

AA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department

Original release date: July 19, 2021SummaryThis Joint Cybersecurity…
July 19, 2021/by SecureTech

Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs

Summary

This Joint Cybersecurity…
May 29, 2021/by SecureTech

DarkSide Ransomware: Best Practices for Preventing Business Disruption from Ransomware Attacks

Summary

This Advisory uses the MITRE…
May 12, 2021/by SecureTech

Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders

The Federal Bureau of Investigation (FBI), Department of Homeland…
April 27, 2021/by SecureTech

Exploitation of Pulse Connect Secure Vulnerabilities

Summary

The Cybersecurity and Infrastructure…
April 21, 2021/by SecureTech

Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool

Summary

This Alert announces the…
March 19, 2021/by SecureTech

TrickBot Malware | CISA

This Advisory uses the MITRE Adversarial Tactics, Techniques,…
March 18, 2021/by SecureTech

Mitigate Microsoft Exchange Server Vulnerabilities

Microsoft has released out-of-band security updates to address…
March 4, 2021/by SecureTech

Exploitation of Accellion File Transfer Appliance

This joint advisory is the result of a collaborative effort…
February 24, 2021/by SecureTech

AppleJeus: Analysis of North Korea’s Cryptocurrency Malware

The North Korean government has used multiple versions of AppleJeus…
February 17, 2021/by SecureTech

Compromise of U.S. Water Treatment Facility

Summary

On February 5, 2021, unidentified…
February 12, 2021/by SecureTech

Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments

This Advisory uses the MITRE Adversarial Tactics, Techniques,…
January 8, 2021/by SecureTech

Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations

This Alert uses the MITRE Adversarial Tactics, Techniques,…
December 18, 2020/by SecureTech

Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data

This Joint Cybersecurity Advisory was coauthored by the Federal…
December 11, 2020/by SecureTech

Advanced Persistent Threat Actors Targeting U.S. Think Tanks

This Advisory uses the MITRE Adversarial Tactics, Techniques,…
December 1, 2020/by SecureTech

Iranian Advanced Persistent Threat Actor Identified Obtaining Voter Registration Data

This advisory uses the MITRE Adversarial Tactics, Techniques,…
October 31, 2020/by SecureTech

Ransomware Activity Targeting the Healthcare and Public Health Sector

This advisory uses the MITRE Adversarial Tactics, Techniques,…
October 29, 2020/by SecureTech

North Korean Advanced Persistent Threat Focus: Kimsuky

This advisory uses the MITRE Adversarial Tactics, Techniques,…
October 28, 2020/by SecureTech

FASTCash 2.0: North Korea’s BeagleBoyz Robbing Banks

North Korea's intelligence apparatus controls a hacking team…
October 27, 2020/by SecureTech

Technical Approaches to Uncovering and Remediating Malicious Activity

This joint advisory is the result of a collaborative research…
October 26, 2020/by SecureTech