Threat Actors Deploy LummaC2 Malware to Exfiltrate Sensitive Data from Organi...
Tuesday, May 20, 2025

Summary The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint advisory to disseminate known tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with threat actors deploying the Lumma... .. read more..

Russian GRU Targeting Western Logistics Entities and Technology Companies
Monday, May 12, 2025

Executive Summary This joint cybersecurity advisory (CSA) highlights a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies. This includes those involved in the coordination, transport, and delivery of foreign assistance to Ukraine. Since 2022, West... .. read more..

Fast Flux: A National Security Threat
Tuesday, April 1, 2025

Executive summary Many networks have a gap in their defenses for detecting and blocking a malicious technique known as “fast flux.” This technique poses a significant threat to national security, enabling malicious cyber actors to consistently evade detection. Malicious cyber actors, including cy... .. read more..

#StopRansomware: Medusa Ransomware
Tuesday, March 11, 2025

Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders detailing various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniq... .. read more..

#StopRansomware: Ghost (Cring) Ransomware
Wednesday, February 19, 2025

Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techn... .. read more..

Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
Wednesday, January 15, 2025

Note:  The CVEs in this advisory are unrelated to vulnerabilities (CVE-2025-0282 and CVE-2025-0283) in Ivanti’s Connect Secure, Policy Secure and ZTA Gateways. For more information on mitigating CVE -2025-0282 and CVE-2025-0283, see Ivanti Releases Security Updates for Connect Secure, Policy... .. read more..

2023 Top Routinely Exploited Vulnerabilities
Friday, November 8, 2024

Summary The following cybersecurity agencies coauthored this joint Cybersecurity Advisory (hereafter collectively referred to as the authoring agencies): United States: The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and National Security Ag... .. read more..

Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises ...
Monday, September 30, 2024

Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Communications Security Establishment Canada (CSE), the Australian Federal Police (AFP), and Australian Signals Directorate's Australian Cyber Se... .. read more..

Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Cr...
Friday, August 2, 2024

EXECUTIVE SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) conducted a red team assessment (RTA) at the request of a critical infrastructure organization. During RTAs, CISA’s red team simulates real-world malicious cyber operations to assess an organization’s cybersecurity dete... .. read more..

Powered by Feed Informer