Chinese State-Sponsored Cyber Operations: Observed TTPs
This advisory uses the MITRE Adversarial Tactics, Techniques,…
Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
AA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
Original release date: July 19, 2021SummaryThis Joint Cybersecurity…
Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs
Summary
This Joint Cybersecurity…
This Joint Cybersecurity…
DarkSide Ransomware: Best Practices for Preventing Business Disruption from Ransomware Attacks
Summary
This Advisory uses the MITRE…
This Advisory uses the MITRE…
Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders
The Federal Bureau of Investigation (FBI), Department of Homeland…
Exploitation of Pulse Connect Secure Vulnerabilities
Summary
The Cybersecurity and Infrastructure…
The Cybersecurity and Infrastructure…
Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool
Summary
This Alert announces the…
This Alert announces the…
TrickBot Malware | CISA
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
Mitigate Microsoft Exchange Server Vulnerabilities
Microsoft has released out-of-band security updates to address…
Exploitation of Accellion File Transfer Appliance
This joint advisory is the result of a collaborative effort…
AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
The North Korean government has used multiple versions of AppleJeus…
Compromise of U.S. Water Treatment Facility
Summary
On February 5, 2021, unidentified…
On February 5, 2021, unidentified…
Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations
This Alert uses the MITRE Adversarial Tactics, Techniques,…
Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data
This Joint Cybersecurity Advisory was coauthored by the Federal…
Advanced Persistent Threat Actors Targeting U.S. Think Tanks
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
Iranian Advanced Persistent Threat Actor Identified Obtaining Voter Registration Data
This advisory uses the MITRE Adversarial Tactics, Techniques,…
Ransomware Activity Targeting the Healthcare and Public Health Sector
This advisory uses the MITRE Adversarial Tactics, Techniques,…
North Korean Advanced Persistent Threat Focus: Kimsuky
This advisory uses the MITRE Adversarial Tactics, Techniques,…
FASTCash 2.0: North Korea’s BeagleBoyz Robbing Banks
North Korea's intelligence apparatus controls a hacking team…
Technical Approaches to Uncovering and Remediating Malicious Activity
This joint advisory is the result of a collaborative research…
Chinese Ministry of State Security-Affiliated Cyber Threat Actor Activity
Through the operation of the National Cybersecurity Protection…
Iran-Based Threat Actor Exploits VPN Vulnerabilities
This Alert uses the MITRE Adversarial Tactics, Techniques,…
AA20-133A: Top 10 Routinely Exploited Vulnerabilities
Original release date: May 12, 2020SummaryThe Cybersecurity and…
AA20-126A: APT Groups Target Healthcare and Essential Services
Original release date: May 5, 2020SummaryThis is a joint alert…