Tag Archives: FBI

FBI, CISA, Coast Guard Report Cyber Vulnerability in Password Management Platform

Password Management

The FBI, Coast Guard Cyber Command and the Cybersecurity and Infrastructure Security Agency (CISA) have jointly reported a cyber vulnerability in a self-service password management platform made by Zoho. Cyber actors capitalizing on advanced persistent threats (APT) are likely to exploit a vulnerability found in Zoho's ManageEngine ADSelfService Plus, CISA said Thursday.

Read More »

CISA, FBI Recommend Steps to Mitigate Risk of Ransomware Attacks; Eric Goldstein Quoted

Eric Goldstein

The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have issued an advisory outlining mitigation measures that organizations in public and private sectors can implement to reduce the risk of ransomware attacks and other cyber incidents. CISA and the bureau have observed a rise in ransomware attacks during holidays and weekends.

Read More »

FBI IDs ‘OnePercent Group’ Launching Ransomware Attacks

Ransomware

The FBI has identified a group of cyberthreat actors that has launched ransomware attacks against U.S. companies since November using Cobalt Strike software. The OnePercent Group uses phishing emails with a malicious zip file attachment to infiltrate victims’ networks, installs Cobalt Strike using IcedID, encrypts and extracts data from the compromised system using rclone and observes the breached network for a month before deploying the ransomware.

Read More »

Senate Bill Aims to Improve US Cybercrime Data Collection

Cybercrime

A bipartisan bill introduced by four senators seeks to provide law enforcement agencies with tools to collect and report data about online crimes. The Better Cybercrime Metrics Act calls for the National Academies of Science to coordinate with public sector stakeholders, businesses and criminologists to organize a database that would classify and quantify malicious activities on the internet

Read More »

US, UK, Australia Agencies List Common Vulnerabilities in Joint Advisory; CISA’s Eric Goldstein Quoted

Eric Goldstein

Cybersecurity agencies from the U.S., the U.K. and Australia have released a joint advisory detailing the 30 most exploited vulnerabilities in 2020 and 2021. The FBI, one of the agencies, said Wednesday that malicious actors mostly targeted remote work, virtual private networks and cloud-based technologies, with many cyber weaknesses left unpatched

Read More »

U.S. Government, Allies Link Microsoft Exchange Hack to China

55th Cyber Squadron

The U.S. government and allies, including the U.K., European Union and NATO, have attributed the Microsoft Exchange Server (MSS) and other malicious cyber activities to threat actors with ties to China’s ministry of state security. Cyber actors linked to China’s MSS used zero-day vulnerabilities in Exchange Server to perform “cyber espionage operations."

Read More »

FBI Appoints James Brown as Operational Technology Division’s Assistant Director

FBI

James “Robert” Brown, former special agent in charge of the FBI's Louisville Field Office in Kentucky, was named as the assistant director of the agency's Operational Technology Division. Brown will support the division as it works to deliver technologies aimed at enabling and enhancing the intelligence, national security and law enforcement operations of the agency.

Read More »

FireEye Appoints Erin Joe As SVP Of Strategy and Alliances; President, COO John Watters Quoted

Erin Joe

FireEye announced on Monday that the company has appointed Erin Joe as senior vice president of Strategy and Alliances. As SVP, Joe will lead strategy development and implementation. She will also be responsible for crucial alliances in both the public and private sectors. Joe served as the director of the Cyber Threat Intelligence Integration Center (CTIIC) under the director of National Intelligence.

Read More »

FBI Works With CISA to Respond to Kesaya Ransomware Attack

Industrial Control System

The FBI has called on organizations to follow Kaseya’s guidance and perform all recommended mitigation measures as it continues to coordinate with the Cybersecurity and Infrastructure Security Agency (CISA) in response to a ransomware attack against managed service providers and their clients involving a vulnerability in Kaseya VSA software.

Read More »