nccic

  1. TA18-276B: Advanced Persistent Threat Activity Exploiting Managed Service Providers

    Original release date: October 03, 2018 Systems Affected Network Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of ongoing APT actor activity attempting to infiltrate the networks of global managed service providers (MSPs). Since May 2016...
    • News
    • Thread
    • apt attack vector cloud computing credential theft cybersecurity data security incident incident response malicious software managed services mitigation nccic network security operational controls security controls system administration technical alert threat actors threat intelligence vulnerability management
    • Replies: 0
    • Forum: Security Alerts

  2. TA18-004A: Meltdown and Spectre Side-Channel Vulnerability Guidance

    Original release date: January 04, 2018 Systems Affected CPU hardware implementations Overview On January 3, 2018, the National Cybersecurity and Communications Integration Center (NCCIC) became aware of a set of security vulnerabilities—known as Meltdown and Spectre— that affect modern...
    • News
    • Thread
    • advisories amazon architecture attack cloud solutions cpu cybersecurity guidance information kernel linux meltdown mitigation nccic patch performance security spectre vulnerability
    • Replies: 0
    • Forum: Security Alerts

  3. TA17-163A: CrashOverride Malware

    Original release date: June 12, 2017 | Last revised: July 27, 2017 Systems Affected Industrial Control Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of public reports from ESET and Dragos outlining a new, highly capable Industrial...
    • News
    • Thread
    • attack authentication authorization crashoverride cybersecurity detection exploitation ics industrial control systems infrastructure malware mitigation monitoring nccic remote access response risk assessment threats ttps vulnerability
    • Replies: 0
    • Forum: Security Alerts

  4. TA17-117A: Intrusions Affecting Multiple Victims Across Multiple Sectors

    Original release date: April 27, 2017 | Last revised: May 14, 2017 Systems Affected Networked Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) has become aware of an emerging sophisticated campaign, occurring since at least May 2016, that uses...
    • News
    • Thread
    • administrativecredentials credential theft cybersecurity data exfiltration hacking healthcare security incident information technology itprotection malware nccic network security plugx public health redleaves remote access trojan security threat actors windows
    • Replies: 0
    • Forum: Security Alerts

  5. TA17-181A: Petya Ransomware

    Original release date: July 01, 2017 Systems Affected Microsoft Windows operating systems Overview On June 27, 2017, NCCIC was notified of Petya ransomware events occurring in multiple countries and affecting multiple sectors. Petya ransomware encrypts the master boot records of infected...
    • News
    • Thread
    • backup cve-2017-0144 cve-2017-0145 cybercrime data recovery encryption malicious software malware ms17-010 nccic network security petya phishing ransomware security smb threats virus windows
    • Replies: 0
    • Forum: Security Alerts

  6. TA17-163A: CrashOverride Malware

    Original release date: June 12, 2017 Systems Affected Industrial Controls Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of public reports from ESET and Dragos outlining a new, highly capable Industrial Controls Systems (ICS) attack...
    • News
    • Thread
    • application whitelisting authentication authorization backup command injection crashoverride critical infrastructure cybersecurity detection ics industrial malware mitigation nccic procedure remote access risk assessment tactics techniques threats
    • Replies: 0
    • Forum: Security Alerts

  7. TA17-117A: Intrusions Affecting Multiple Victims Across Multiple Sectors

    Original release date: April 27, 2017 Systems Affected Networked Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) has become aware of an emerging sophisticated campaign, occurring since at least May 2016, that uses multiple malware implants. Initial...
    • News
    • Thread
    • attack vector credential theft cybersecurity data breach defense strategies indicators of compromise intrusion it services malware nccic network security network traffic plugx rat redleaves risk assessment security threat actors vulnerability windows
    • Replies: 0
    • Forum: Security Alerts