cisa – Page 5 – Computer Security Articles

MalwareBytes Security

Chinese APT’s favorite vulnerabilities revealed

October 13, 2022 admin Advanced Persistent Threat, APT, chinese apt, cisa, Exploits and vulnerabilities, FBI, news, NSA, security advisory

Categories: Exploits and vulnerabilities

Categories: News

Tags: Chinese APT

Tags: advanced persistent threat

Tags: APT

Tags: CISA

Tags: NSA

Tags: FBI

Tags: security advisory

CISA, the NSA and the FBI have compiled a list of the vulnerabilities targeted by state-sponsorted threat actors from China.

(Read more…)

The post Chinese APT’s favorite vulnerabilities revealed appeared first on Malwarebytes Labs.

MalwareBytes Security

BOD 23-01: Improving asset visibility and vulnerability detection on federal networks

October 6, 2022 admin asset visibility, bod 23-01, cdm, cisa, federal networks, news, vulnerability detection

Categories: News

Tags: BOD 23-01

Tags: asset visibility

Tags: vulnerability detection

Tags: federal networks

Tags: CISA

Tags: CDM

Tags:

CISA has issued BOD 23-10 which requires all FCEB entities to maintain an inventory of all IPv4- and IPv6-networked assets, perform regular, periodic scans of these devices, and provide this information to CISA.

(Read more…)

The post BOD 23-01: Improving asset visibility and vulnerability detection on federal networks appeared first on Malwarebytes Labs.

MalwareBytes Security

Warning issued about Vice Society ransomware targeting the education sector

September 7, 2022 admin cisa, FBI, hellokitty, lausd, news, printnightmare, ransomware, SonicWall, stopransomware, vice society

Categories: News

Categories: Ransomware

Tags: FBI

Tags: CISA

Tags: StopRansomware

Tags: Vice Society

Tags: HelloKitty

Tags: SonicWall

Tags: PrintNightmare

Tags: LAUSD

The FBI, CISA, and the MS-ISAC have released a joint Cybersecurity Advisory after observing Vice Society threat actors disproportionately targeting the education sector with ransomware attacks.

(Read more…)

The post Warning issued about Vice Society ransomware targeting the education sector appeared first on Malwarebytes Labs.

MalwareBytes Security

A week in security (August 22 – August 28)

August 29, 2022 admin binance, chromeos, cisa, cryptojackers, gitlab, google, Hikvision, lastpass, news, patch management, plex, Reddit, Social engineering, trickbot, Twitter

Categories: News

Tags: cryptojackers

Tags: CISA

Tags: Reddit

Tags: social engineering

Tags: Google

Tags: PLex

Tags: Hikvision

Tags: patch management

Tags: ChromeOS

Tags: Twitter

Tags: Binance

Tags: Gitlab

Tags: TrickBot

Tags: LastPass

The important security news of this week

(Read more…)

The post A week in security (August 22 – August 28) appeared first on Malwarebytes Labs.

MalwareBytes Security

NetStandard attack should make Managed Service Providers sit up and take notice

August 3, 2022 admin cisa, connectwise, iab, kaseya, MSP, netstandard, Security world, supply chain attack

Credit to Author: Pieter Arntz| Date: Wed, 03 Aug 2022 16:48:37 +0000

The attack on MSP NetStandard reminds us once again that MSPs are a very attractive target for cybercriminals

The post NetStandard attack should make Managed Service Providers sit up and take notice appeared first on Malwarebytes Labs.

MalwareBytes Security

North Korean APT targets US healthcare sector with Maui ransomware

July 10, 2022 admin APT, cisa, conti, cybersecurity and infrastructure security agency, department of treasury, FBI, federal bureau of investigations, jen easterly, maui, maui ransomware, NORTH KOREA, north korean apt, raas, ransom.maui, ransomware, ShiOne, treasury

Credit to Author: Jovi Umawing| Date: Sun, 10 Jul 2022 21:43:29 +0000

CISA warns of an unusual ransomware.

The post North Korean APT targets US healthcare sector with Maui ransomware appeared first on Malwarebytes Labs.

MalwareBytes Security

Dial 311 for… cybersecurity emergencies?

June 23, 2022 admin 311, awareness, cisa, cyber incident emergency line, cybersecurity and infrastructure security agency, eric goldstein, george stathakopoulos, strengthening american cybersecurity act

Credit to Author: Malwarebytes Labs| Date: Thu, 23 Jun 2022 15:51:59 +0000

Cybersecurity experts want a hotline for SMBs to further encourage cyber incident reporting, especially those involving ransomware attacks.

The post Dial 311 for… cybersecurity emergencies? appeared first on Malwarebytes Labs.

MalwareBytes Security

Karakurt extortion group: Threat profile

June 14, 2022 admin accenture security, advanced intel, anydesk, chainalysis, cirt, cisa, cobalt strike, conti ransomware, cyber incident response team, cybercrime, cybersecurity and infrastructure security agency, diavol, diavol ransomware, dridex, evil corp., FBI, Federal Bureau of Investigation, filezilla, karakurt, karakurt extortion group, karakurt lair, karakurt team, kimberly goody, Mandiant, mega.io, mfa, Mimikatz, multi-factor authentication, ncc, ransomhouse, ransomware, ransomware syndicate, rclone, tetra defense, virtual private network, VPN, Wall Street Journal

Credit to Author: Jovi Umawing| Date: Tue, 14 Jun 2022 16:00:29 +0000

An obscure group called Karakurt has extorted organizations in the US and elsewhere. Know how to keep it away from your network.

The post Karakurt extortion group: Threat profile appeared first on Malwarebytes Labs.