About this tag
Network compromise is a critical cybersecurity event where an attacker gains unauthorized access to an organization's internal systems. On WindowsForum.com, discussions cover real-world incidents such as Russian state-sponsored advanced persistent threat (APT) actors compromising U.S. government networks, as detailed in joint advisories from FBI and CISA. Another common vector is the use of web shells on web servers, which can lead to broader network compromise. These threads emphasize prevention, detection, and mitigation strategies, drawing on frameworks like MITRE ATT&CK. Topics include threat actor tactics, exploitation techniques, and guidance for securing Windows-based environments against persistent threats.
-
AA20-296A: Russian State-Sponsored Advanced Persistent Threat Actor Compromises U.S. Government Targets
Original release date: October 22, 2020 Summary This joint cybersecurity advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor tactics and techniques This joint cybersecurity...- News
- Thread
- brute force cisa citrix issue credentials cybersecurity data exfiltration exchange server fbi government targets incident response krb-tgt mfa mitigation network compromise password reset russian apt sql injection threat actors vpn vulnerability
- Replies: 0
- Forum: Security Alerts
-
TA15-314A: Web Shells – Threat Awareness and Guidance
Original release date: November 10, 2015 Systems Affected Web servers that allow web shells Overview This alert describes the frequent use of web shells as an exploitation vector. Web shells can be used to obtain unauthorized access and can lead to wider network compromise. This alert...- News
- Thread
- asp command and control cybersecurity data exfiltration detection exploitation incident response malware mitigation network compromise perl php python remote access security best practices software security threats update vulnerability web shells
- Replies: 0
- Forum: Security Alerts