intrusion detection

  1. AA21-116A: Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders

    Original release date: April 26, 2021 Summary The Federal Bureau of Investigation (FBI), Department of Homeland Security (DHS), and Cybersecurity and Infrastructure Security Agency (CISA) assess Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29...
    • News
    • Thread
    • active directory apt 29 cloud exploitation credential abuse cyber defense cyber exploitation cyber operations intrusion detection it security malware multi-factor authentication network security password spraying security recommendations solarwinds svr threat intelligence vps wellmess zero-day
    • Replies: 0
    • Forum: Security Alerts

  2. AA19-339A: Dridex Malware

    Original release date: December 5, 2019 Summary This Alert is the result of recent collaboration between the Department of the Treasury Financial Sector Cyber Information Group (CIG) and the Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) to identify and share...
    • News
    • Thread
    • bots cisa cybersecurity data breach dridex exploits financial fincen indicators of compromise intrusion detection intrusion prevention malspam malware mitigation phishing privacy ransomware security best practices trojan vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  3. TA18-149A: HIDDEN COBRA – Joanap Backdoor Trojan and Brambul Server Message Block Worm

    Original release date: May 29, 2018 Systems Affected Network systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS and FBI...
    • News
    • Thread
    • brambul brute-force attack compromise indicators cybersecurity dhs fbi hidden cobra intrusion detection ip addresses it security joanap malware malware analysis mitigation strategies network defense network security remote access tool server message block trojan worm
    • Replies: 0
    • Forum: Security Alerts

  4. TA18-074A: Russian Government Cyber Activity Targeting Energy and Other Critical Infrastructure Sectors

    Original release date: March 15, 2018 Systems Affected Domain Controllers File Servers Email Servers Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This alert...
    • News
    • Thread
    • critical infrastructure cyber kill chain cybersecurity dhs email security energy sector fbi incident response indicators of compromise industrial control systems intrusion detection malicious activity malware network security remote access russian government spear phishing technical alert threat actors watering hole attack
    • Replies: 0
    • Forum: Security Alerts

  5. Windows 7 ADT Home Security: “Unfortunately, they time our calls so we have to be as quick as we can.”

    ADT is a home and business security service that provides high-tech home monitoring in the event of private property intrusion or break-in. They are one of the largest in the US, and their systems range from wired solutions to WiFi ones. In the US, they also hold several government contracts. I...
    • Mike
    • Thread
    • adt alarm systems business practices consumer awareness customer support device malfunction ethical practices home safety home security intrusion detection monitoring property protection security console security solutions service quality tech issues technology advancements vandalism wireless systems
    • Replies: 0
    • Forum: Windows Security