indicators

  1. AA21-321A: Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activi

    Original release date: November 17, 2021 Summary Actions to Take Today to Protect Against Iranian State-Sponsored Malicious Cyber Activity • Immediately patch software affected by the following vulnerabilities: CVE-2021-34473, 2018-13379, 2020-12812, and 2019-5591. • Implement Link Removed. •...
    • News
    • Thread
    • apt authentication cisa compromise cybersecurity data exfiltration exploitation fbi fortinet indicators infrastructure iran malware microsoft exchange mitigation patch management protection ransomware threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  2. AA21-201A: Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013

    Original release date: July 20, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. Note: CISA released technical information...
    • News
    • Thread
    • chinese actors cisa cyberattacks cybersecurity data protection exfiltration fbi ics indicators infrastructure intrusion malware mitigations natural gas phishing pipeline security scada spearphishing threat actors ttps
    • Replies: 0
    • Forum: Security Alerts

  3. AA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department

    Original release date: July 19, 2021 Summary This Joint Cybersecurity Advisory was written by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to provide information on a Chinese Advanced Persistent Threat (APT) group known in open-source...
    • News
    • Thread
    • apt40 china compromise compromised credentials credential access cyber threat cybersecurity exfiltration hainan indicators information security intellectual property lateral movement malware mitre network defense state security tactics threat actors vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  4. AA21-148A: Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs

    Original release date: May 28, 2021 Summary The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are responding to a spearphishing campaign targeting government organizations, intergovernmental organizations (IGOs), and non-governmental...
    • News
    • Thread
    • apt29 cisa cobalt strike compromise cybersecurity detection email security emerging threats fbi government incident response indicators iso file malware mitigations phishing risk management spearphishing threat actor user training
    • Replies: 0
    • Forum: Security Alerts

  5. AA20-225A: Malicious Cyber Actor Spoofing COVID-19 Loan Relief Webpage via Phishing Emails

    Original release date: August 12, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is currently tracking an unknown malicious cyber actor who is spoofing the Small Business Administration (SBA) COVID-19 loan relief webpage via phishing emails. These emails include a...
    • News
    • Thread
    • antivirus best practices cisa covid-19 credential theft cybersecurity email security federal security indicators links low trust malicious actor malware mitigations phishing remote attacks sba threats unauthorized access vulnerability
    • Replies: 0
    • Forum: Security Alerts

  6. AA20-133A: Top 10 Routinely Exploited Vulnerabilities

    Original release date: May 12, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the broader U.S. Government are providing this technical guidance to advise IT security professionals at public and private sector...
    • News
    • Thread
    • adobe flash best practices cisa cve cybersecurity exploitation fbi foreign actors indicators it security malware microsoft mitigations network security o365 patching ransomware threats vpn vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  7. AA20-099A: COVID-19 Exploited by Malicious Cyber Actors

    Original release date: April 8, 2020 Summary This is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC). This alert provides information on...
    • News
    • Thread
    • apt cisa compromise covid-19 credential theft cybersecurity email security indicators malicious actors malware mitigation ncsc phishing ransomware remote access scams social engineering teleconferencing teleworking vpn
    • Replies: 0
    • Forum: Security Alerts

  8. Microsoft Launches a New Recognition Program for MAPP Partners

    There are many dedicated people and organizations who contribute to the protection and security of our common customers. For years, Microsoft has recognized security researchers for helping protect the ecosystem. Now, we’re announcing the launch of a new program to better recognize and thank...
    • News
    • Thread
    • awards black hat contribution disclosure ecosystem evangelism indicators mapp microsoft partners program protection recognition research response security strategist threat updates vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  9. TA14-353A: Targeted Destructive Malware

    Original release date: December 19, 2014 Systems Affected Microsoft Windows Overview US-CERT was recently notified by a trusted third party of cyber threat actors using a Server Message Block (SMB) Worm Tool to conduct cyber exploitation activities recently targeting a major entertainment...
    • News
    • Thread
    • anti-virus backdoor c2 infrastructure compromise cybersecurity data loss destruction exploit hard drive indicators malware mitigation network propagation proxy tool security smb system security threat worm
    • Replies: 0
    • Forum: Security Alerts

  10. TA14-329A: Regin Malware

    Original release date: November 25, 2014 Systems Affected Microsoft Windows NT, 2000, XP, Vista, and 7 Overview On November 24, 2014, Symantec released a report on Regin, a sophisticated backdoor Trojan used to conduct intelligence-gathering campaigns. At this time, the Regin campaign has...
    • News
    • Thread
    • analysis attack components compromise cybersecurity encryption indicators intelligence malware networking prevention rat regin remote access security trojan update user guide windows
    • Replies: 0
    • Forum: Security Alerts

  11. TA14-212A: Backoff Point-of-Sale Malware

    Original release date: July 31, 2014 Systems Affected Point-of-Sale Systems Overview This advisory was prepared in collaboration with the National Cybersecurity and Communications Integration Center (NCCIC), United States Secret Service (USSS), Financial Sector Information Sharing and...
    • News
    • Thread
    • antivirus backoff brute force command control consumer protection cybersecurity data breach exfiltration exploit forensics indicators it security keylogging malware mitigation network security payment data point-of-sale remote desktop risk management
    • Replies: 0
    • Forum: Security Alerts

  12. Windows 7 Strange icons on photos

    I just transferred some photos from my camera to a folder on my computer. When I view these photos in Windows Explorer as Extra Large Icons or Large Icons, each photo has a red circle with a white exclamation point inside it at the bottom of the picture. Photos in other folders that I...
    • Jim S
    • Thread
    • check mark computer exclamation point file transfer folder green circle icons indicators photos photoshop elements picasa red circle security strange icons trend micro windows explorer
    • Replies: 2
    • Forum: Windows Help and Support
  13. T

    Windows 7 Creative Sound In Win 7

    Hi, This is the first significant problem since downloading the beta, what is it 2 months or more? It's not stopped me playing sound as I've used the on-board system which has a similar spec. but it's frustrating. Vista SB X-Fi drivers certainly wouldn't work but I downloaded the recently...
    • tecmicseven
    • Thread
    • 5.1 audio beta cambridge creative digital drivers fix hardware indicators installation on-board playback problems sound speaker troubleshooting windows 7 x-fi
    • Replies: 8
    • Forum: Windows Help and Support
  14. R

    Windows Vista internet connection disappears after some time using it

    i have problem with my internet connection ... it disappears when i am not using for a longer period of time , e.g. yesterday i left my pc on to download a movie and this morning i found out that internet is not working - i cant go to web sites , downloads stopped and all other stuff ... however...
    • romaxltu
    • Thread
    • broadband connection downloads ethernet home premium indicators internet reboot troubleshooting windows vista
    • Replies: 6
    • Forum: Windows Networking