Active Threat Alerts

Chinese State-Sponsored Cyber Operations: Observed TTPs
This advisory uses the MITRE Adversarial Tactics, Techniques,…
July 21, 2021/by SecureTechChinese Gas Pipeline Intrusion Campaign, 2011 to 2013
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
July 20, 2021/by SecureTechAA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
Original release date: July 19, 2021SummaryThis Joint Cybersecurity…
July 19, 2021/by SecureTech
Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs
Summary
This Joint Cybersecurity…
May 29, 2021/by SecureTechThis Joint Cybersecurity…
DarkSide Ransomware: Best Practices for Preventing Business Disruption from Ransomware Attacks
Summary
This Advisory uses the MITRE…
May 12, 2021/by SecureTechThis Advisory uses the MITRE…
Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders
The Federal Bureau of Investigation (FBI), Department of Homeland…
April 27, 2021/by SecureTechExploitation of Pulse Connect Secure Vulnerabilities
Summary
The Cybersecurity and Infrastructure…
April 21, 2021/by SecureTechThe Cybersecurity and Infrastructure…
Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool
Summary
This Alert announces the…
March 19, 2021/by SecureTechThis Alert announces the…

TrickBot Malware | CISA
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
March 18, 2021/by SecureTech
Mitigate Microsoft Exchange Server Vulnerabilities
Microsoft has released out-of-band security updates to address…
March 4, 2021/by SecureTechExploitation of Accellion File Transfer Appliance
This joint advisory is the result of a collaborative effort…
February 24, 2021/by SecureTech
AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
The North Korean government has used multiple versions of AppleJeus…
February 17, 2021/by SecureTechCompromise of U.S. Water Treatment Facility
Summary
On February 5, 2021, unidentified…
February 12, 2021/by SecureTechOn February 5, 2021, unidentified…
Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
January 8, 2021/by SecureTechAdvanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations
This Alert uses the MITRE Adversarial Tactics, Techniques,…
December 18, 2020/by SecureTech
Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data
This Joint Cybersecurity Advisory was coauthored by the Federal…
December 11, 2020/by SecureTechAdvanced Persistent Threat Actors Targeting U.S. Think Tanks
This Advisory uses the MITRE Adversarial Tactics, Techniques,…
December 1, 2020/by SecureTech
Iranian Advanced Persistent Threat Actor Identified Obtaining Voter Registration Data
This advisory uses the MITRE Adversarial Tactics, Techniques,…
October 31, 2020/by SecureTechRansomware Activity Targeting the Healthcare and Public Health Sector
This advisory uses the MITRE Adversarial Tactics, Techniques,…
October 29, 2020/by SecureTechNorth Korean Advanced Persistent Threat Focus: Kimsuky
This advisory uses the MITRE Adversarial Tactics, Techniques,…
October 28, 2020/by SecureTech
FASTCash 2.0: North Korea’s BeagleBoyz Robbing Banks
North Korea's intelligence apparatus controls a hacking team…
October 27, 2020/by SecureTech
Technical Approaches to Uncovering and Remediating Malicious Activity
This joint advisory is the result of a collaborative research…
October 26, 2020/by SecureTechChinese Ministry of State Security-Affiliated Cyber Threat Actor Activity
Through the operation of the National Cybersecurity Protection…
October 25, 2020/by SecureTechIran-Based Threat Actor Exploits VPN Vulnerabilities
This Alert uses the MITRE Adversarial Tactics, Techniques,…
October 24, 2020/by SecureTechAA20-133A: Top 10 Routinely Exploited Vulnerabilities
Original release date: May 12, 2020SummaryThe Cybersecurity and…
June 8, 2020/by AA20-126A: APT Groups Target Healthcare and Essential Services
Original release date: May 5, 2020SummaryThis is a joint alert…
May 9, 2020/by