Consistent with open-source reporting, the NJCCIC detected increased attempts to exploit DocuSign APIs to deliver fraudulent invoices. Unlike traditional phishing scams, which rely on misleading emails and links, these attacks use real DocuSign accounts and templates to mimic companies.
LastPass Password Manager warned customers about a new social engineering campaign in which threat actors are leaving five-star reviews, posing as support on the LastPass extension review page on Google Chrome. In these reviews, they provide customers with a fake number...
A vulnerability has been discovered in Cisco Unified Industrial Wireless Software for Ultra-Reliable Wireless Backhaul Access Point that could allow for remote code execution. Cisco Unified Industrial Wireless Software for Ultra-Reliable Wireless Backhaul Access Point is Cisco’s...
The CISA has received multiple reports of a large-scale spearphishing campaign targeting organizations in several sectors. The foreign threat actor, often posing as a trusted entity, is sending spearphishing emails containing malicious remote desktop protocol (RDP) files
The Federal Bureau of Investigation (FBI), US Department of Treasury, and Israel National Cyber Directorate released this Joint Cybersecurity Advisory to warn network defenders of new cyber tradecraft of the Iranian cyber group Emennet Pasargad, which has been operating under an alias...
Recently, a vulnerability in SonicWall SonicOS management access and SSL VPN (CVE-2024-40766) was exploited in unpatched devices, leading to at least 30 intrusions by Fog and Akira ransomware. Research indicates possible infrastructure sharing between the two groups.
Quick-response (QR) codes are convenient and easy to use in everyday life to access information and navigate to websites. Unfortunately, cyber threat actors continue to take advantage of the increased adoption of QR code scanning.
The NJCCIC detected a campaign linked to TA544, also referred to as Bamboo Spider and Zeus Panda, which has reemerged after a period of inactivity since their last campaign. Similar to open-source reporting, this new campaign attempts to distribute the WarmCookie backdoor.
The NJCCIC’s email security solution has observed an uptick in phishing attacks impersonating Truist Bank and Wells Fargo Bank. These emails were flagged for using uncommon URL domains, abused URL services, and uncommon senders. Read more about signs to look for.
In a joint statement released on October 25, the Office of the Director of National Intelligence (ODNI), the FBI, and the CISA assessed that Russian influence operations had manufactured and amplified a video falsely depicting ballots being destroyed in Pennsylvania
