Yearly Archives: 2020

Alerts

AA20-283A: APT Actors Chaining Vulnerabilities Against SLTT, Critical Infrastructure, and Elections Organizations

Original release date: October 9, 2020SummaryThis joint cybersecurity advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat…

Comments Off on AA20-283A: APT Actors Chaining Vulnerabilities Against SLTT, Critical Infrastructure, and Elections Organizations
October 10, 2020
Current Activity

QNAP Releases Security Updates for QNAP Helpdesk

Original release date: October 8, 2020QNAP Systems has released security updates to address vulnerabilities in QNAP Helpdesk. An attacker could exploit these vulnerabilities to take control of an affected QNAP…

Comments Off on QNAP Releases Security Updates for QNAP Helpdesk
October 8, 2020
Alerts

AA20-280A: Emotet Malware

Original release date: October 6, 2020SummaryThis Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques.…

Comments Off on AA20-280A: Emotet Malware
October 6, 2020
Bulletins

Vulnerability Summary for the Week of September 28, 2020

Original release date: October 5, 2020 The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not…

Comments Off on Vulnerability Summary for the Week of September 28, 2020
October 6, 2020
Current Activity

October is National Cybersecurity Awareness Month

Original release date: October 1, 2020October is National Cybersecurity Awareness Month (NCSAM), which is a collaborative effort between the Cybersecurity and Infrastructure Security Agency (CISA) and its public and private…

Comments Off on October is National Cybersecurity Awareness Month
October 2, 2020
Current Activity

CISA and CNMF Identify a New Malware Variant

Original release date: October 1, 2020The Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Defense (DOD) Cyber National Mission Force (CNMF) have identified a malware variant—referred to as…

Comments Off on CISA and CNMF Identify a New Malware Variant
October 1, 2020
Alerts

AA20-275A: Potential for China Cyber Response to Heightened U.S.–China Tensions

Original release date: October 1, 2020SummaryThis Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques.…

Comments Off on AA20-275A: Potential for China Cyber Response to Heightened U.S.–China Tensions
October 1, 2020
Current Activity

CISA and MS-ISAC Release Ransomware Guide

Original release date: September 30, 2020The Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC) have released a joint Ransomware Guide that details practices…

Comments Off on CISA and MS-ISAC Release Ransomware Guide
September 30, 2020