The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) collaborated with international cybersecurity partners to develop a guide to help network defenders harden on-premises Exchange servers against exploitation.
The CISA released this Cybersecurity Advisory detailing lessons learned from an incident response engagement following the detection of potential malicious activity identified through security alerts generated by the agency’s endpoint detection and response tool.
Over the last several years, there has been a recent increase in video teleconferencing (VTC) hijacking incidents, specifically "Zoom Bombing." These incidents involve unwanted individuals accessing a VTC meeting, sharing inappropriate or hateful content, etc.
The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), the Department of Defense Cyber Crime Center (DC3), and the National Security Agency (NSA) released a Joint Fact Sheet strongly urging organizations to remain vigilant.
On Saturday, June 21, United States military forces struck three of Iran’s key nuclear facilities: Natanz, Isfahan, and Fordow. At this time, there are no specific or credible threats to New Jersey from Iran; however, the situation remains highly fluid following the recent airstrikes on Iranian...
Last night, Israel initiated "Operation Rising Lion," a significant wave of airstrikes targeting key Iranian nuclear facilities and military installations, including the main enrichment site at Natanz and various military bases. The NJCCIC assesses that heightened geopolitical tensions...
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Environmental Protection Agency (EPA), and the Department of Energy (DOE)—hereafter referred to as “the authoring organizations”—are aware of cyber incidents...
The NJCCIC periodically receives reports of New Jersey users implementing mailbox forwarding rules that automatically forward messages from their work email to an external mailbox that is not monitored by their organization. Email forwarding to external non-work accounts...
Fortinet is aware of a technique employed by cyber threat actors to maintain read-only access to vulnerable FortiGate devices by creating a symbolic link connecting the user filesystem and the root filesystem in a folder used to serve language files for the SSL-VPN.
The NJCCIC continues to receive reports of unauthorized access resulting from a failure in identity and access management or patch management, such as virtual private network (VPN) accounts without multi-factor authentication (MFA) implemented.
