Stealing and selling RDP credentials has risen over the last year - and cyber criminal middlemen are making a profit by putting businesses at risk from ransomware and other attacks....
Zur StartseiteAA20-302A: Ransomware Activity Targeting the Healthcare and Public Health Sector
vom 461.71 Punkte 
Original release date: October 28, 2020SummaryThis advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques.
This joint cybersecurity
TA18-106A: Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices
vom 397.89 Punkte
Original release date: April 16, 2018Systems Affected
Generic Routing Encapsulation (GRE) Enabled DevicesCisco Smart Install (SMI) Enabled DevicesSimple Network Management Protocol (SNMP) Enabled Network DevicesOverview
This joint Technical Alert (TA) is the result of analy
AA20-245A: Technical Approaches to Uncovering and Remediating Malicious Activity
vom 305.81 Punkte
Original release date: September 1, 2020SummaryThis joint advisory is the result of a collaborative research effort by the cybersecurity authorities of five nations: Australia,[1] Canada,[2] New Zealand,[3][4] the United Kingdom,[5] and the United States.[6] It highlights technical appro
Malcolm - A Powerful, Easily Deployable Network Traffic Analysis Tool Suite For Full Packet Capture Artifacts (PCAP Files) And Zeek Logs
vom 296.58 Punkte
Malcolm is a powerful network traffic analysis tool suite designed with the following goals in mind:
Easy to use – Malcolm accepts network traffic data in the form of full packet capture (PCAP) files and Zeek (formerly Bro) logs. These artifacts can be
TA18-074A: Russian Government Cyber Activity Targeting Energy and Other Critical Infrastructure Sectors
vom 272.71 Punkte
Original release date: March 15, 2018Systems Affected
Domain ControllersFile ServersEmail ServersOverview
This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bu
AA18-284A: Publicly Available Tools Seen in Cyber Incidents Worldwide
vom 266.73 Punkte
Original release date: October 11, 2018Summary
This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the United Kingdom, and the United States.[1][2][3][4][5]
In it we highlight the use of five publicly
AA19-339A: Dridex Malware
vom 263.6 Punkte
Original release date: December 5, 2019SummaryThis Alert is the result of recent collaboration between Department of the Treasury Financial Sector Cyber Information Group (CIG) and the Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN
TA18-276B: Advanced Persistent Threat Activity Exploiting Managed Service Providers
vom 246.35 Punkte
Original release date: October 3, 2018Systems Affected
Network Systems
Overview
The National Cybersecurity and Communications Integration Center (NCCIC) is aware of ongoing APT actor activity attempting to infiltrate the networks of global managed serv
AA20-239A: FASTCash 2.0: North Korea's BeagleBoyz Robbing Banks
vom 234.41 Punkte
Original release date: August 26, 2020SummaryThis Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques.
This joint advisory is
TA17-293A: Advanced Persistent Threat Activity Targeting Energy and Other Critical Infrastructure Sectors
vom 229.95 Punkte
Original release date: October 20, 2017 | Last revised: October 23, 2017Systems Affected
Domain ControllersFile ServersEmail ServersOverview
This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Secur
TA17-117A: Intrusions Affecting Multiple Victims Across Multiple Sectors
vom 228.19 Punkte
Original release date: April 27, 2017 | Last revised: May 14, 2017Systems Affected
Networked Systems
Overview
The National Cybersecurity and Communications Integration Center (NCCIC) has become aware of an emerging sophisticated campaign, occurri
AA20-345A: Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data
vom 210.84 Punkte
Original release date: December 10, 2020<br/><h3>Summary</h3><p>This Joint Cybersecurity Advisory was coauthored by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the