Tag Archives: advanced persistent threat

FBI, CISA Issue Advisory on Hackers Targeting Fortinet Operating System Vulnerabilities

FortiOS Vulnerabilities

The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint advisory on the exploitation of vulnerabilities in Fortinet’s FortiOS operating system by advanced persistent threat actors. CISA has called on administrators and users to review the joint cybersecurity advisory and carry out the recommended measures to mitigate cyber risks.

Read More »

NIST Issues Guidance for Securing Critical Unclassified Data Against Advanced Persistent Threats

Kubernetes Hardening

The National Institute of Standards and Technology (NIST) has released a final guidance containing recommendations on how to protect controlled unclassified information from advanced persistent threats. Ron Ross, a computer scientist and NIST fellow, said the organization published the guidance in response to reported critical cyber attacks to U.S. infrastructure.

Read More »

CISA Reports Advanced Persistent Threat in Compromised Cloud Platforms

Cybersecurity and

The Cybersecurity and Infrastructure Security Agency (CISA) has discovered the occurrence of an advanced persistent threat in cloud environments after the event of a system compromise. CISA said Friday that it detected an APT actor that accessed cloud resources via compromised Microsoft 365 applications and additional credentials. Concerned network administrators may view CISA's alert report on the matter for more countermeasures and information regarding the APT threats.

Read More »

Cyber Unified Coordination Group Provides Update on SolarWinds Orion Compromise

Cyber Attack

The FBI, Office of the Director of National Intelligence (ODNI), Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) issued a joint statement on Tuesday through the newly created cyber unified coordination group (UCG) to provide updates on an advanced persistent threat actor allegedly linked to Russia. 

Read More »

CISA Warns of New Cyber Threat Impacting SolarWinds’ Orion IT Network Visualization Tool

Cybersecurity

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory on a new advanced persistent threat (APT) that targeted the supply chain involving SolarWinds’ Orion information technology management platform and impacted public and private infrastructure. CISA is additionally investigating other APT incidents that breach Security Assertion Markup Language authentication procedures. 

Read More »

CISA, FBI, USCYBEROM Issue Warning on ‘Kimsuky’ North Korean-Backed Hacking Group

Cybercrime

The FBI, Cybersecurity and Infrastructure Security Agency (CISA) and U.S. Cyber Command Cyber National Mission Force (CNMF) have issued a joint advisory to warn the public of a North Korean-linked hacking group called Kimsuky. CISA, FBI and CNMF utilized data from intelligence reporting and open-source databases to consolidate Kimsuky's tactics, techniques and procedures (TTP).

Read More »

CISA, FBI Issue Joint Advisory on Threat Actors Targeting Federal, State, Local IT Networks

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have warned that advanced persistent threat actors are exploiting legacy vulnerabilities in internet-facing infrastructure devices to gain access to networks of federal and state, local, tribal and territorial government agencies. "Vulnerability chaining exploits multiple vulnerabilities in the course of a single intrusion to compromise a network or application,” CISA and FBI stated.

Read More »

Ron Ross: NIST Awaits OMB Approval of Special Publication 800-53 Revision 5

Ron Ross, a National Institute of Standards and Technology fellow, said NIST is waiting for the Office of Management and Budget’s office of information and regulatory affairs to finish its final review and approve Special Publication 800-53, revision 5 to begin soliciting public comments on six cybersecurity documents, Federal News Network reported Tuesday.

Read More »