Modernizing Medicine, Inc. (ModMed) discovered unauthorized activity in certain computer servers used by its podiatry practice clients. Between July 9 and July 10, 2025, a threat actor accessed and copied sensitive information stored on these internal servers.
Central Jersey Medical Center, Inc. (CJMC) announced a data breach in which personally identifiable information and protected health information of certain patients may have been compromised. On August 25, 2025, a threat actor gained unauthorized access to the CJMC...
Remcos is advertised as a legitimate remote administration tool used for surveillance and penetration testing purposes; however, threat actors weaponize it as a remote access trojan (RAT) to gain unauthorized access, steal credentials, capture and exfiltrate data, and install malware.
The NJCCIC observed a campaign attempting to distribute Agent Tesla malware. Agent Tesla functions as a remote access trojan (RAT) with information-stealing capabilities, including keystroke logging, password harvesting, clipboard theft, and screen capture.
Multiple vulnerabilities have been discovered in Oracle products, the most severe of which could allow for remote code execution. Watchtowr reports CVE-2025-61882 and CVE-2025-61884 were exploited in the recent wave of Cl0p data theft attacks and subsequent extortion campaign.
In August 2025, F5 learned that a highly sophisticated nation-state threat actor maintained long-term, persistent access to and downloaded files from select F5 systems. These systems included the BIG-IP product development environment and other platforms.
The NJCCIC continues to receive reports of cryptocurrency scams in which threat actors convince potential victims to deposit funds on fraudulent platforms with lures of high-yield, quick-return cryptocurrency investments. Weeks or months after a deposit is made, the victim can...
The NJCCIC identified a phishing campaign that uses tactics to make detection more difficult, leading to increased account compromises. Users receive an initial encrypted email with an encrypted link to "Read the message," which leads to a legitimate Microsoft 365 login page.
SMS text phishing (SMiShing) scams impersonating the New Jersey Motor Vehicle Commission (MVC) or the obsolete New Jersey Division of Motor Vehicles (DMV) continue to be reported to the NJCCIC. The messages claim that the user has an outstanding traffic ticket.
The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive ED 26-01: Mitigate Vulnerabilities in F5 Devices to direct Federal Civilian Executive Branch agencies to inventory F5 BIG-IP products, evaluate if the networked management interfaces are...
