Ransomware groups frequently use Endpoint Detection and Response (EDR) tools like AuKill, EDRKillShifter, and others to disable security systems. Threat actors were recently observed incorporating the open-source tool EDRSilencer into their attack strategies.
Attached is a White Paper, 2024 Election Threat Landscape. This paper discusses threats from the cyber, physical, and hybrid perspectives and includes recommendations for election offices and associated parties to implement to improve their preparedness.
The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC)—in partnership with the Cybersecurity and Infrastructure Security Agency (CISA), United States government, and international partners—released the Principles of Operational Technology Cybersecurity.
The Cybersecurity and Infrastructure Security Agency (CISA) issued an alert regarding state-sponsored threat actors' attempts to breach critical infrastructure networks. Cyberattacks on water and wastewater systems could have catastrophic impacts. Click to learn more.
October marks the 21st anniversary of Cybersecurity Awareness Month, which is dedicated to raising awareness of the importance of protecting online information through cybersecurity best practices. Cybersecurity Awareness Month is a collaborative effort led by CISA/NCA.
The Cybersecurity and Infrastructure Security Agency (CISA) and the United States Coast Guard, released an Analysis Report and Infographic detailing the findings from the 143 risk and vulnerability assessments (RVAs) conducted across multiple critical infrastructure sectors in FY23.
Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user.
Multiple vulnerabilities have been discovered in Ivanti products, the most severe of which could allow for remote code execution. Successful exploitation could allow for remote code execution in the context of the system. An attacker can delete data, and more, with this vulnerability.
A vulnerability in SonicWall SonicOS Management Access and SSLVPN, which could allow for unauthorized resource access and in specific conditions, causing the firewall to crash. SonicOS is SonicWall’s operating system designed for their firewalls and other security devices.
The education sector is a primary focus for threat actors, ranking among the most vulnerable sectors globally. This susceptibility stems from the vast collection of valuable data, a general deficit in cybersecurity awareness, and extensive, prevalent vulnerabilities.
