cyber actors

About this tag
This tag covers cybersecurity advisories about malicious cyber actors exploiting vulnerabilities in widely used systems. Topics include the exploitation of Accellion File Transfer Appliance vulnerabilities, North Korean cyber actors targeting cryptocurrency platforms with AppleJeus malware, and campaigns compromising home and office routers worldwide using VPNFilter malware. The content focuses on threat actor tactics, techniques, and procedures, as well as mitigation guidance from government cybersecurity authorities. Discussions center on network device security, cryptocurrency threats, and file transfer appliance risks.
  1. AA21-055A: Exploitation of Accellion File Transfer Appliance

    Original release date: February 24, 2021 Summary This joint advisory is the result of a collaborative effort by the cybersecurity authorities of Australia,[Link Removed] New Zealand,[2] Singapore,[3] the United Kingdom,[4] and the United States.[Link Removed][6] These authorities are aware of...
  2. AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware

    Original release date: February 17, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts...
  3. TA18-145A: Cyber Actors Target Home and Office Routers and Networked Devices Worldwide

    Original release date: May 25, 2018 Systems Affected Small office/home office (SOHO) routers Networked devices Network-attached storage (NAS) devices Overview Cybersecurity researchers have identified that foreign cyber actors have compromised hundreds of thousands of home and office...