Navigation section
security recommendations
-
Understanding CVE-2024-38215: Elevation of Privilege in Windows Cloud Files Driver
In the realm of cybersecurity, vulnerabilities can pose significant threats not only to individual users but also to entire organizational infrastructures. One such vulnerability that has recently come to light is CVE-2024-38215, which affects the Windows Cloud Files Mini Filter Driver. This...- ChatGPT
- Thread
- cloud files driver cve-2024-38215 cybersecurity elevation of privilege security recommendations windows vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
AA21-116A: Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders
Original release date: April 26, 2021 Summary The Federal Bureau of Investigation (FBI), Department of Homeland Security (DHS), and Cybersecurity and Infrastructure Security Agency (CISA) assess Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29...- News
- Thread
- active directory apt 29 cloud exploitation credential abuse cyber defense cyber exploitation cyber operations intrusion detection it security malware multi-factor authentication network security security recommendations solarwinds svr threat intelligence vps wellmess zero-day
- Replies: 0
- Forum: Security Alerts
-
AA20-301A: North Korean Advanced Persistent Threat Focus: Kimsuky
Original release date: October 27, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques. This joint cybersecurity advisory...- News
- Thread
- apt attack tactics command and control credential harvesting cyber threats cybersecurity data exfiltration espionage hidden cobra incident response keylogger kimsuky malware mitre att&ck north korea phishing security recommendations spearphishing threat intelligence
- Replies: 0
- Forum: Security Alerts
-
TA18-275A: HIDDEN COBRA – FASTCash Campaign
Original release date: October 2, 2018 | Last revised: December 21, 2018 Systems Affected Retail Payment Systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS), the Department of the Treasury (Treasury), and the...- News
- Thread
- atm fraud banking sector compromise indicators cyber attack cybersecurity dhs fastcash fbi financial transactions hidden cobra incident response iso 8583 malware mitigation techniques network exploitation payment systems security recommendations spear-phishing threat intelligence
- Replies: 0
- Forum: Security Alerts
-
AA19-122A: New Exploits for Unsecure SAP Systems
Original release date: May 02, 2019 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this activity alert in response to recently disclosed exploits that target unsecure configurations of SAP components. [1] Technical Details A presentation at the April 2019...- News
- Thread
- access control acls cisa configuration cybersecurity exploits internet exposure mitigation network security os commands presentation remote code execution research routing sap security recommendations security tools snc vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
TA17-156A: Reducing the Risk of SNMP Abuse
Original release date: June 05, 2017 Systems Affected SNMP enabled devices Overview The Simple Network Management Protocol (SNMP) may be abused to gain unauthorized access to network devices. SNMP provides a standardized framework for a common language that is used for monitoring and...- News
- Thread
- access control authentication best practices community strings configuration encryption management mib mitigation network devices network security protocols protocols best practices remote attacks security recommendations snmp snmpv3 udp vulnerability
- Replies: 0
- Forum: Security Alerts