The NJCCIC continues to observe TOAD phishing email attacks. Prior to the attack, cybercriminals perform reconnaissance on victims, gathering information from various sources, such as past data breaches, social media profiles, and data purchased on the dark web.
LockBit ransomware has long held a dominant position at the forefront of the most active and prevalent threats in the cyber landscape. Since 2019, LockBit has orchestrated numerous attacks targeting entities regardless of their size or global location. Read to learn on how to protect against this.
The National Security Agency and FBI recently issued a cybersecurity advisory regarding APT43, a North Korean linked hacking group, that was exploiting weak email Domain-based Message Authentication Reporting and Conformance policies to mask spearphishing attacks.
There have been attempts by Democratic People’s Republic of Korea (a.k.a. North Korea) Kimsuky cyber threat actors to exploit DNS Domain-based Message Authentication, Reporting and Conformance (DMARC) record policies to conceal social engineering attempts.
The Cyber Army of Russia Reborn, a hacktivist group connected to the Russian government, is actively targeting Water and Wastewater facilities across the United States to break into Supervisory Control and Data Acquisition (SCADA) systems, which control water utilities.
Pro-Russia hacktivists are targeting and compromising small-scale OT systems in North American and European Water and Wastewater Systems (WWS), Dams, Energy, and Food and Agriculture Sectors, seeking to exploit VNC remote access software and default passwords.
This provides an overview for executive leaders on the urgent risk posed by People’s Republic of China (PRC) state-sponsored cyber actors known as Volt Typhoon. Volt Typhoon has been pre-positioning themselves on US critical infrastructure organizations’ networks.
the authoring organizations and industry partners have determined that cyber threat actors are able to deceive Ivanti’s internal and external Integrity Checker Tool (ICT), resulting in a failure to detect compromise. Cyber threat actors are exploiting multiple vulnerabilities.
This 3-part series reflects upon the evolving cyber threat landscape and explores how geopolitical tensions can be a contributing factor. The importance of a strong cybersecurity posture cannot be overstated, as we all face an array of cyberattacks that can inflict significant damage.
