About this tag
This tag covers cybersecurity advisories about malicious cyber actors exploiting vulnerabilities in widely used systems. Topics include the exploitation of Accellion File Transfer Appliance vulnerabilities, North Korean cyber actors targeting cryptocurrency platforms with AppleJeus malware, and campaigns compromising home and office routers worldwide using VPNFilter malware. The content focuses on threat actor tactics, techniques, and procedures, as well as mitigation guidance from government cybersecurity authorities. Discussions center on network device security, cryptocurrency threats, and file transfer appliance risks.
-
AA21-055A: Exploitation of Accellion File Transfer Appliance
Original release date: February 24, 2021 Summary This joint advisory is the result of a collaborative effort by the cybersecurity authorities of Australia,[Link Removed] New Zealand,[2] Singapore,[3] the United Kingdom,[4] and the United States.[Link Removed][6] These authorities are aware of...- News
- Thread
- accellion cisa cyber actors cybersecurity data theft end of life exploitation extortion file sharing file transfer incident response iocs malware mitigation patch remediation security advisory sql injection vulnerability zero-day
- Replies: 0
- Forum: Security Alerts
-
AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
Original release date: February 17, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts...- News
- Thread
- applejeus apt actors cisa cryptocurrency cryptocurrency theft cyber actors cybersecurity exfiltration fbi financial sector hidden cobra malicious software malware mitigation mitre att&ck north korea phishing spear phishing threat mitigation
- Replies: 0
- Forum: Security Alerts
-
TA18-145A: Cyber Actors Target Home and Office Routers and Networked Devices Worldwide
Original release date: May 25, 2018 Systems Affected Small office/home office (SOHO) routers Networked devices Network-attached storage (NAS) devices Overview Cybersecurity researchers have identified that foreign cyber actors have compromised hundreds of thousands of home and office...- News
- Thread
- blackenergy cyber actors cybersecurity data loss dhs exploit fbi firmware intelligence malware network devices network security network traffic reboot router soho threats vpnfilter
- Replies: 0
- Forum: Security Alerts