The CISA has received multiple reports of a large-scale spearphishing campaign targeting organizations in several sectors. The foreign threat actor, often posing as a trusted entity, is sending spearphishing emails containing malicious remote desktop protocol (RDP) files
The Federal Bureau of Investigation (FBI), US Department of Treasury, and Israel National Cyber Directorate released this Joint Cybersecurity Advisory to warn network defenders of new cyber tradecraft of the Iranian cyber group Emennet Pasargad, which has been operating under an alias...
In a joint statement released on October 25, the Office of the Director of National Intelligence (ODNI), the FBI, and the CISA assessed that Russian influence operations had manufactured and amplified a video falsely depicting ballots being destroyed in Pennsylvania
The FBI, the CISA, the NSA, the Communications Security Establishment Canada (CSE), Australian Federal Police (AFP), and others released this Joint Cybersecurity Advisory to warn network defenders of Iranian cyber actors’ use of brute force.
Since at least 2021, Russian SVR cyber threat actors – also tracked as APT29, Midnight Blizzard (formerly Nobelium), Cozy Bear, and the Dukes – have consistently targeted US, European, and global entities in the Defense Industrial Base, and other sectors.
A vulnerability has been discovered in Mozilla Firefox which could allow for arbitrary code execution. Successful exploitation could allow for arbitrary code execution. Depending on the privileges associated with the user, threat actors could install programs and more..,
The newest threat to emerge from Mirai’s leaked source code has made itself known in a big way. The botnet, dubbed GorillaBot , issued over 300,000 attack commands across 113 countries from September 4 to September 27, targeting China, the United States, and Canada.
The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) released this Fact Sheet, which provides information about threat actors affiliated with the Iranian Government’s Islamic Revolutionary Guard Corps (IRGC)
A suspected Chinese (PRC) state-sponsored cyber threat group, Salt Typhoon, was recently identified accessing multiple United States internet service providers (ISPs) to conduct cyber espionage. This attack is the latest of campaigns sponsored by the Chinese government.
As the implementation of multi-factor authentication (MFA) becomes prevalent, there is a growing surge in attempts to bypass, breach, and hijack its security measures. Threat actors have increasingly utilized session hijacking in attempts to bypass MFA checkpoints.
