-
AA18-284A: Publicly Available Tools Seen in Cyber Incidents Worldwide
Original release date: October 11, 2018 Summary This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the United Kingdom, and the United States.Link Removed[2][3][4]Link Removed In it we highlight the use of five...- News
- Thread
- apt chinachopper credential theft cybersecurity exfiltration huc incident response jbifrost lateral movement malware mimikatz network defense network monitoring phishing powershellempire publictools remote access security updates threat actors vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
TA18-276B: Advanced Persistent Threat Activity Exploiting Managed Service Providers
Original release date: October 03, 2018 Systems Affected Network Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of ongoing APT actor activity attempting to infiltrate the networks of global managed service providers (MSPs). Since May 2016...- News
- Thread
- apt attack vector cloud computing credential theft cybersecurity data security incident incident response malicious software managed services mitigation nccic network security operational controls security controls system administration technical alert threat actors threat intelligence vulnerability management
- Replies: 0
- Forum: Security Alerts
-
TA17-293A: Advanced Persistent Threat Activity Targeting Energy and Other Critical...
Original release date: October 20, 2017 Systems Affected Domain Controllers File Servers Email Servers Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This alert...- News
- Thread
- apt credential harvesting cyber espionage cybersecurity dhs energy sector fbi ics incident response indicators of compromise industrial control systems malicious software malware network security scada spear phishing staging targets technical alert threat detection watering hole attack
- Replies: 0
- Forum: Security Alerts
-
TA16-250A: The Increasing Threat to Network Infrastructure Devices and Recommended Mitigations
Original release date: September 06, 2016 | Last revised: September 28, 2016 Systems Affected Network Infrastructure Devices Overview The advancing capabilities of organized hacker groups and cyber adversaries create an increasing global threat to information systems. The rising threat...- News
- Thread
- admin rights apt attack vector authentication cisco configuration cve-2016-6366 cyber threats firewall infrastructure iot malware mitigation network devices network security security best practices segmentation shadow brokers supply chain vpn
- Replies: 0
- Forum: Security Alerts
-
TA16-250A: The Increasing Threat to Network Infrastructure Devices and Recommended Mitigations
Original release date: September 06, 2016 Systems Affected Network Infrastructure Devices Overview The advancing capabilities of organized hacker groups and cyber adversaries create an increasing global threat to information systems. The rising threat levels place more demands on security...- News
- Thread
- access control apt authentication cisco asa cve-2014-3393 cve-2016-6366 cybersecurity firewall hacker threats infrastructure malware mitigation network management network security network segmentation remote access router supply chain synful knock vpn
- Replies: 0
- Forum: Security Alerts