Tag Archives: APT

CISA Reports Advanced Persistent Threat in Compromised Cloud Platforms

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) has discovered the occurrence of an advanced persistent threat in cloud environments after the event of a system compromise. CISA said Friday that it detected an APT actor that accessed cloud resources via compromised Microsoft 365 applications and additional credentials. Concerned network administrators may view CISA's alert report on the matter for more countermeasures and information regarding the APT threats.

Read More »

Cyber Unified Coordination Group Provides Update on SolarWinds Orion Compromise

Cyber Attack

The FBI, Office of the Director of National Intelligence (ODNI), Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) issued a joint statement on Tuesday through the newly created cyber unified coordination group (UCG) to provide updates on an advanced persistent threat actor allegedly linked to Russia. 

Read More »

CISA Warns of New Cyber Threat Impacting SolarWinds’ Orion IT Network Visualization Tool

Cybersecurity

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory on a new advanced persistent threat (APT) that targeted the supply chain involving SolarWinds’ Orion information technology management platform and impacted public and private infrastructure. CISA is additionally investigating other APT incidents that breach Security Assertion Markup Language authentication procedures. 

Read More »

CISA, FBI Release Joint Advisory on Threat Actors Targeting Think Tanks

Russia-Linked Hackers

The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) are warning that advanced persistent threat actors are exploiting vulnerabilities in internet-facing devices and remote connections and using spear-phishing emails to access networks of U.S. think tanks. The advisory from CISA and the bureau listed several tactics, techniques and procedures APT actors used to target think tanks. 

Read More »

CISA, FBI, USCYBEROM Issue Warning on ‘Kimsuky’ North Korean-Backed Hacking Group

Advanced

The FBI, Cybersecurity and Infrastructure Security Agency (CISA) and U.S. Cyber Command Cyber National Mission Force (CNMF) have issued a joint advisory to warn the public of a North Korean-linked hacking group called Kimsuky. CISA, FBI and CNMF utilized data from intelligence reporting and open-source databases to consolidate Kimsuky's tactics, techniques and procedures (TTP).

Read More »

CISA, FBI Issue Joint Advisory on Threat Actors Targeting Federal, State, Local IT Networks

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have warned that advanced persistent threat actors are exploiting legacy vulnerabilities in internet-facing infrastructure devices to gain access to networks of federal and state, local, tribal and territorial government agencies. "Vulnerability chaining exploits multiple vulnerabilities in the course of a single intrusion to compromise a network or application,” CISA and FBI stated.

Read More »

Cedric Leighton: DoD Works to Address Advanced Persistent Threats

blank

The Defense Department seeks to address cybersecurity concerns such as advanced persistent threats that use unauthorized entities to gain access to networks and steal data from an organization, C4ISR & Networks reported Wednesday. John Edwards writes Cedric Leighton, former National Security Agency deputy director of training, said APTs can collect large …

Read More »