For those keeping a sharp eye on cybersecurity headlines, it’s time to pay attention yet again. In a recently issued advisory by CISA (Cybersecurity & Infrastructure Security Agency) and the FBI, a critical warning was sent out to network administrators, IT specialists, and the broader...
A recent Cybersecurity Joint Advisory from CISA and the FBI has revealed a sophisticated cyber campaign that targeted vulnerabilities in Ivanti's Cloud Service Appliances (CSA). These breaches demonstrate the critical need for system administrators to remain vigilant and proactive in addressing...
Let’s cut to the chase. Every time a new piece of software graces our hardware, there's an unspoken gamble. Will the shiny new application be tight on security, or will it blow the front door open to malicious hackers like leaving a Welcome mat out for a cyberattack? Well, to help clear up the...
On November 20, 2024, the Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Federal Bureau of Investigation (FBI) and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), announced significant updates to their advisory regarding the...
In a collaborative stride toward fortifying cybersecurity, the Cybersecurity and Infrastructure Security Agency (CISA), along with the Federal Bureau of Investigation (FBI), National Security Agency (NSA), and various international partners, recently unveiled a crucial advisory detailing the...
The cybersecurity landscape is an ever-evolving battleground where the stakes are continually being raised. Recently, the Cybersecurity and Infrastructure Security Agency (CISA) joined forces with the Federal Bureau of Investigation (FBI) to unveil a crucial piece of guidance that software...
On October 8, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) issued a crucial fact sheet titled "How to Protect Against Iranian Targeting of Accounts Associated with National Political Organizations." This timely advisory arises...
Introduction
According to the CISA (Cybersecurity and Infrastructure Security Agency) and FBI's recent announcement dated September 17, 2024, a new Secure by Design Alert has been released focusing on eliminating Cross-Site Scripting (XSS) vulnerabilities in software systems. This alert stems...
Hosts on Russia's state-owned Russia-1 television channel said that officials in Moscow have already been "studying" top secret and other classified documents the FBI sought through a search warrant of former President Donald Trump's Mar-a-Lago resort home...
Original release date: December 2, 2021
Summary
This joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise framework for referenced threat actor techniques and for mitigations.
This joint...
Original release date: November 17, 2021
Summary
Actions to Take Today to Protect Against Iranian State-Sponsored Malicious Cyber Activity
• Immediately patch software affected by the following vulnerabilities: CVE-2021-34473, 2018-13379, 2020-12812, and 2019-5591.
• Implement Link Removed.
•...
Original release date: October 18, 2021
Summary
Actions You Can Take Now to Protect Against BlackMatter Ransomware
• Implement and enforce backup and restoration policies and procedures.
• Use Link Removed.
• Use Link Removed.
• Implement network segmentation and traversal monitoring.
Note...
Original release date: October 14, 2021
Summary
Immediate Actions WWS Facilities Can Take Now to Protect Against Malicious Cyber Activity
• Do not click on Link Removed.
• If you use RDP, secure and monitor it.
• Use Link Removed.
• Use Link Removed.
Note: This advisory uses the MITRE...
Original release date: September 22, 2021
Summary
Immediate Actions You Can Take Now to Protect Against Conti Ransomware
• Use Link Removed.
• Segment and segregate networks and functions.
• Update your operating system and software.
Note: This Alert uses the MITRE Adversarial Tactics...
Original release date: September 16, 2021
Summary
This Joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 8. See the ATT&CK for Enterprise for referenced threat actor tactics and for techniques.
This joint advisory is...