Navigation section
nccic
-
TA18-276B: Advanced Persistent Threat Activity Exploiting Managed Service Providers
Original release date: October 03, 2018 Systems Affected Network Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of ongoing APT actor activity attempting to infiltrate the networks of global managed service providers (MSPs). Since May 2016...- News
- Thread
- apt attack vectors cloud computing credential theft cybersecurity data protection incident reporting incident response malicious activity managed service providers mitigation techniques nccic network security operational controls security controls system administration technical alert threat actors threat intelligence vulnerability management
- Replies: 0
- Forum: Security Alerts
-
TA18-004A: Meltdown and Spectre Side-Channel Vulnerability Guidance
Original release date: January 04, 2018 Systems Affected CPU hardware implementations Overview On January 3, 2018, the National Cybersecurity and Communications Integration Center (NCCIC) became aware of a set of security vulnerabilities—known as Meltdown and Spectre— that affect modern...- News
- Thread
- advisories amazon architecture attacks cloud cpu cybersecurity guidance information kernel linux meltdown mitigations nccic patch patches performance security spectre vulnerability
- Replies: 0
- Forum: Security Alerts
-
TA17-163A: CrashOverride Malware
Original release date: June 12, 2017 | Last revised: July 27, 2017 Systems Affected Industrial Control Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of public reports from ESET and Dragos outlining a new, highly capable Industrial...- News
- Thread
- attack authentication crashoverride cybersecurity detection exploitation ics industrial control systems infrastructure malware mitigation monitoring nccic remote access response risk evaluation threat ttps vulnerability
- Replies: 0
- Forum: Security Alerts
-
TA17-117A: Intrusions Affecting Multiple Victims Across Multiple Sectors
Original release date: April 27, 2017 | Last revised: May 14, 2017 Systems Affected Networked Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) has become aware of an emerging sophisticated campaign, occurring since at least May 2016, that uses...- News
- Thread
- administrativecredentials credentialtheft cybersecurity dataexfiltration hacking healthcaresecurity incidentreport informationtechnology itprotection malware malwareanalysis nccic networksecurity plugx publichealth redleaves remoteaccesstrojan securitythreat threatactors windows
- Replies: 0
- Forum: Security Alerts
-
TA17-181A: Petya Ransomware
Original release date: July 01, 2017 Systems Affected Microsoft Windows operating systems Overview On June 27, 2017, NCCIC was notified of Petya ransomware events occurring in multiple countries and affecting multiple sectors. Petya ransomware encrypts the master boot records of infected...- News
- Thread
- backup cve-2017-0144 cve-2017-0145 cyber crime data recovery encryption it security malicious software malware ms17-010 nccic network security petya phishing ransomware security smb threat virus windows
- Replies: 0
- Forum: Security Alerts
-
TA17-163A: CrashOverride Malware
Original release date: June 12, 2017 Systems Affected Industrial Controls Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of public reports from ESET and Dragos outlining a new, highly capable Industrial Controls Systems (ICS) attack...- News
- Thread
- applicationwhitelisting authentication backupstrategies commandinjection crashoverride criticalinfrastructure cybersecurity detection ics industrial malware mitigation nccic procedures remoteaccess riskevaluation tactics techniques threat
- Replies: 0
- Forum: Security Alerts
-
TA17-117A: Intrusions Affecting Multiple Victims Across Multiple Sectors
Original release date: April 27, 2017 Systems Affected Networked Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) has become aware of an emerging sophisticated campaign, occurring since at least May 2016, that uses multiple malware implants. Initial...- News
- Thread
- attack vectors credential theft cybersecurity data breach defense strategies indicators of compromise intrusion it security it service providers malware nccic network security network traffic plugx rat redleaves risk evaluation threat actors vulnerability windows
- Replies: 0
- Forum: Security Alerts