Welcome to CYNET-CSIRT
CYNET-CSIRT provides incident response and cybersecurity services to both the CYNET and to all Universities, Research institutes and other organisations under its umbrella.
REPORT AN INCIDENT
Are you under attack or have you been under attack? You may report an incident using the Online Reporting Form or call us at 1490.
About CYNET-CSIRT
CYNET-CSIRT envisions to provide incident response and security services to all Academic Institutions, Research Institutes and educational networks that are members of the Cyprus Research & Academic Network (CYNET), both current and future.
CYNET-CSIRT aims to educate its members about the effects of cyber threats and cyber-crime, and train them to provide early warnings, alerts, announcements and efficient use of the respective tools.
LATEST SECURITY ALERTS
As part of its mission, CYNET-CSIRT promises to inform you of all the latest vulnerabilities and security bulletins.
The list below shows the latest security alerts.
- AA21-008A: Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments
- AA20-352A: Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations
- AA20-345A: Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data
- AA20-336A: Advanced Persistent Threat Actors Targeting U.S. Think Tanks
- AA20-304A: Iranian Advanced Persistent Threat Actor Identified Obtaining Voter Registration Data
- AA20-302A: Ransomware Activity Targeting the Healthcare and Public Health Sector
- AA20-301A: North Korean Advanced Persistent Threat Focus: Kimsuky
- AA20-296B: Iranian Advanced Persistent Threat Actors Threaten Election-Related Systems
- AA20-296A: Russian State-Sponsored Advanced Persistent Threat Actor Compromises U.S. Government Targets
- AA20-283A: APT Actors Chaining Vulnerabilities Against SLTT, Critical Infrastructure, and Elections Organizations
View Alerts history.
The list below shows the latest security analysis reports.
- AR21-027A: MAR-10319053-1.v1 – Supernova
- AR21-013A: Strengthening Security Configurations to Defend Against Attackers Targeting Cloud Services
- AR20-303B: MAR-10310246-1.v1 – ZEBROCY Backdoor
- AR20-303A: MAR-10310246-2.v1 – PowerShell Script: ComRAT
- AR20-275A: MAR-10303705-1.v1 – Remote Access Trojan: SLOTHFULMEDIA
- AR20-268A: Federal Agency Compromised by Malicious Cyber Actor
- AR20-259A: MAR-10297887-1.v1 – Iranian Web Shells
- AR20-239C: MAR-10257062-1.v2 – North Korean Remote Access Tool: FASTCASH for Windows
- AR20-239B: MAR-10301706-2.v1 – North Korean Remote Access Tool: VIVACIOUSGIFT
- AR20-239A: MAR-10301706-1.v1 – North Korean Remote Access Tool: ECCENTRICBANDWAGON
View Analysis Reports history.
The list below shows the latest security analysis reports.
- Vulnerability Summary for the Week of January 18, 2021
- Vulnerability Summary for the Week of January 11, 2021
- Vulnerability Summary for the Week of January 4, 2021
- Vulnerability Summary for the Week of December 28, 2020
- Vulnerability Summary for the Week of December 21, 2020
- Vulnerability Summary for the Week of December 14, 2020
- Vulnerability Summary for the Week of December 7, 2020
- Vulnerability Summary for the Week of November 30, 2020
- Vulnerability Summary for the Week of November 23, 2020
- Vulnerability Summary for the Week of November 16, 2020
View Bulletins history.
The list below shows the latest security-related Current Activities.
- FTC Reports Scammers Impersonating FTC
- Cisco Releases Advisories for Multiple Products
- NSA Releases Guidance on Encrypted DNS in Enterprise Environments
- Apache Releases Security Advisory for Tomcat
- RCE Vulnerability Affecting Microsoft Defender
- Attackers Exploit Poor Cyber Hygiene to Compromise Cloud Security Environments
- Microsoft Releases January 2021 Security Updates
- NSA Cybersecurity Directorate Releases 2020 Year in Review
- Microsoft Releases Security Updates for Edge
- CISA Releases New Alert on Post-Compromise Threat Activity in Microsoft Cloud Environments and Tools to Help Detect This Activity
View Current Activity history.
CYNET-CSIRT is funded by Connecting Europe Facility
CYNET-CSIRT establishment was made possible via EU funding. The project begun on September 2018 and it is foreseen to conclude on August 2020.