Alerts – Page 17 – CYNET-CSIRT

AA20-010A: Continued Exploitation of Pulse Secure VPN Vulnerability

Unpatched Pulse Secure VPN servers continue to be an attractive target for malicious actors. Affected organizations that have not applied the software patch to fix a remote code execution (RCE)…

Comments Off

January 10, 2020

Alerts

AA20-006A: Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad

The Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection of our Nation’s critical infrastructure in…

Comments Off

January 6, 2020

Alerts

AA19-339A: Dridex Malware

This Alert is the result of recent collaboration between Department of the Treasury Financial Sector Cyber Information Group (CIG) and the Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN)…

Comments Off

December 5, 2019

Alerts

AA19-290A: Microsoft Ending Support for Windows 7 and Windows Server 2008 R2

Note: This alert does not apply to federally certified voting systems running Windows 7. Microsoft will continue to provide free security updates to those systems through the 2020 election. See…

Comments Off

October 17, 2019

Alerts

AA19-168A: Microsoft Operating Systems BlueKeep Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this Activity Alert to provide information on a vulnerability, known as “BlueKeep,” that exists in the following Microsoft Windows Operating Systems…

Comments Off

June 17, 2019

Alerts

AA19-122A: New Exploits for Unsecure SAP Systems

The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this activity alert in response to recently disclosed exploits that target unsecure configurations of SAP components. [1] A presentation at the…

Comments Off

May 3, 2019

Alerts

AA19-024A: DNS Infrastructure Hijacking Campaign

The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), is aware of a global Domain Name System (DNS) infrastructure hijacking campaign. Using…

Comments Off

January 24, 2019

Alerts

AA18-337A: SamSam Ransomware

The Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) and the Federal Bureau of Investigation (FBI) are issuing this activity alert to inform computer network defenders…

Comments Off

December 3, 2018

Alerts

TA18-331A: 3ve – Major Online Ad Fraud Operation

This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). DHS and FBI are releasing this TA…

Comments Off

November 27, 2018

Alerts

AA18-284A: Publicly Available Tools Seen in Cyber Incidents Worldwide

Remote Access Trojan: JBiFrost First observed in May 2015, the JBiFrost RAT is a variant of the Adwind RAT, with roots stretching back to the Frutas RAT from 2012.A RAT is…

Comments Off

October 11, 2018