Tag: Activity
-
Microsoft: Exchange Ransomware Activity ‘Limited’ So Far
But Further Remediation Actions Essential to Guard Against Long-Term Risks Microsoft says ransomware activity against compromised …
-
AA21-077A: Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool
This Alert announces the CISA Hunt and Incident Response Program (CHIRP) tool. CHIRP is a forensics collection tool that CISA developed to …
-
TTP Table for Detecting APT Activity Related to SolarWinds and Active Directory/M365 Compromise
CISA has released a table of tactics, techniques, and procedures (TTPs) used by the advanced persistent threat (APT) actor involved with …
-
Healthcare Still Seeing High Level of Attacker Activity
Interest in vaccines is driving all sorts of activity, reports say, from vaccine-specific phishing to growing bot traffic on healthcare …
-
AA21-008A: Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments
This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for …
-
Dark Web Forum Activity Surged 44% in Early COVID Months
Dark Web forum activity grew 44% during the spring of 2020 compared with baseline numbers in January, researchers learned in a new analysis …
-
CISA Releases CISA Insights and Creates Webpage on Ongoing APT Cyber Activity
CISA is tracking a known compromise involving SolarWinds Orion products that are currently being exploited by a malicious actor. An …
-
FBI: #COVID19 Recession Fuels Money Mule Activity
The FBI has warned that the economic recession caused by COVID-19 is creating the perfect conditions for a surge in money mule activity. An …
-
Heightened Awareness for Iranian Cyber Activity
Iranian cyber threat actors have been continuously improving their offensive cyber capabilities. They continue to engage in more …
-
FBI Warns of Uptick in Ragnar Locker Ransomware Activity
The FBI has sent out a private industry alert warning about increasing attacks using Ragnar Locker ransomware. See …
-
Advisories: “Brazen” Russian ransomware hackers target hundreds of US hospitals
Russian hackers are targeting hundreds of US hospitals and healthcare providers just as the Corona Virus is making a comeback and the US …
-
AA20-302A: Ransomware Activity Targeting the Healthcare and Public Health Sector
Original release date: October 28, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge …
●●●