Februar 2023
08.02.2023
US CERT
AA23-039A: ESXiArgs Ransomware Virtual Machine Recovery Guidance
Titel
AA23-039A: ESXiArgs Ransomware Virtual Machine Recovery Guidance
Veröffentlicht
8. Februar 2023 17:14
URL
https://us-cert.cisa.gov/ncas/alerts/aa23-039a
Text
Original release date: February 8, 2023SummaryThe Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are releasing this joint Cybersecurity Advisory (CSA) in response to the ongoing ransomware campaign, known as “ESXiArgs.” Malicious actors may be exploiting known vulnerabilities in VMware ESXi servers that are likely ...
Januar 2023
31.01.2023
US CERT
#StopRansomware: Cuba Ransomware
Titel
<a href="/news-events/cybersecurity-advisories/aa22-335a" hreflang="en">#StopRansomware: Cuba Ransomware</a>
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-335a
Text
31.01.2023
US CERT
#StopRansomware: Hive Ransomware
Titel
#StopRansomware: Hive Ransomware
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-321a
Text
Summary Actions to Take Today to Mitigate Cyber Threats from Ransomware: • Prioritize remediating known exploited vulnerabilities. • Enable and enforce multifactor authentication with strong passwords • Close unused ports and remove any application not deemed necessary for day-to-day operations. Note: This joint Cybersecurity Advisory (CSA) is part of an ...
31.01.2023
US CERT
Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester
Titel
Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-320a
Text
Summary From mid-June through mid-July 2022, CISA conducted an incident response engagement at a Federal Civilian Executive Branch (FCEB) organization where CISA observed suspected advanced persistent threat (APT) activity. In the course of incident response activities, CISA determined that cyber threat actors exploited the Log4Shell vulnerability in an unpatched VMware ...
31.01.2023
US CERT
#StopRansomware: Hive Ransomware
Titel
<a href="/news-events/cybersecurity-advisories/aa22-321a" hreflang="en">#StopRansomware: Hive Ransomware</a>
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-321a
Text
31.01.2023
US CERT
#StopRansomware: Cuba Ransomware
Titel
#StopRansomware: Cuba Ransomware
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-335a
Text
Summary Actions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce phishing-resistant multifactor authentication. Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for ...
31.01.2023
US CERT
Protecting Against Malicious Use of Remote Monitoring and Management Software
Titel
Protecting Against Malicious Use of Remote Monitoring and Management Software
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-025a
Text
Summary The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) (hereafter referred to as the “authoring organizations”) are releasing this joint Cybersecurity Advisory (CSA) to warn network defenders about malicious use of legitimate remote monitoring and management (RMM) software. In ...
31.01.2023
US CERT
Impacket and Exfiltration Tool Used to Steal Sensitive ...
Titel
<a href="/news-events/cybersecurity-advisories/aa22-277a" hreflang="en">Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization</a>
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-277a
Text
31.01.2023
US CERT
Top CVEs Actively Exploited By People’s Republic of Chi...
Titel
<a href="/news-events/cybersecurity-advisories/aa22-279a" hreflang="en">Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors</a>
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-279a
Text
31.01.2023
US CERT
Protecting Against Malicious Use of Remote Monitoring a...
Titel
<a href="/news-events/cybersecurity-advisories/aa23-025a" hreflang="en">Protecting Against Malicious Use of Remote Monitoring and Management Software</a>
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-025a
Text
31.01.2023
US CERT
Iranian Government-Sponsored APT Actors Compromise Fede...
Titel
<a href="/news-events/cybersecurity-advisories/aa22-320a" hreflang="en">Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester</a>
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-320a
Text
31.01.2023
US CERT
#StopRansomware: Daixin Team
Titel
<a href="/news-events/cybersecurity-advisories/aa22-294a" hreflang="en">#StopRansomware: Daixin Team</a>
Veröffentlicht
31. Januar 2023 22:32
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-294a
Text
25.01.2023
US CERT
AA23-025A: Protecting Against Malicious Use of Remote Monitoring and Management Software
Titel
AA23-025A: Protecting Against Malicious Use of Remote Monitoring and Management Software
Veröffentlicht
25. Januar 2023 18:55
URL
https://us-cert.cisa.gov/ncas/alerts/aa23-025a
Text
Original release date: January 25, 2023SummaryThe Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) (hereafter referred to as the “authoring organizations”) are releasing this joint Cybersecurity Advisory (CSA) to warn network defenders about malicious use of legitimate remote monitoring and ...
Dezember 2022
01.12.2022
US CERT
AA22-335A: #StopRansomware: Cuba Ransomware
Titel
AA22-335A: #StopRansomware: Cuba Ransomware
Veröffentlicht
1. Dezember 2022 19:04
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-335a
Text
Original release date: December 1, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce phishing-resistant multifactor authentication. Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort ...
November 2022
17.11.2022
US CERT
AA22-321A: #StopRansomware: Hive Ransomware
Titel
AA22-321A: #StopRansomware: Hive Ransomware
Veröffentlicht
17. November 2022 18:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-321a
Text
Original release date: November 17, 2022SummaryActions to Take Today to Mitigate Cyber Threats from Ransomware: • Prioritize remediating known exploited vulnerabilities. • Enable and enforce multifactor authentication with strong passwords • Close unused ports and remove any application not deemed necessary for day-to-day operations. Note: This joint Cybersecurity Advisory (CSA) ...
16.11.2022
US CERT
AA22-320A: Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester
Titel
AA22-320A: Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester
Veröffentlicht
16. November 2022 16:04
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-320a
Text
Original release date: November 16, 2022SummaryFrom mid-June through mid-July 2022, CISA conducted an incident response engagement at a Federal Civilian Executive Branch (FCEB) organization where CISA observed suspected advanced persistent threat (APT) activity. In the course of incident response activities, CISA determined that cyber threat actors exploited the Log4Shell vulnerability ...
Oktober 2022
21.10.2022
US CERT
AA22-294A: #StopRansomware: Daixin Team
Titel
AA22-294A: #StopRansomware: Daixin Team
Veröffentlicht
21. Oktober 2022 16:29
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-294a
Text
Original release date: October 21, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Install updates for operating systems, software, and firmware as soon as they are released. • Require phishing-resistant MFA for as many services as possible. • Train users to recognize and report phishing attempts. Note: ...
06.10.2022
US CERT
AA22-279A: Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors
Titel
AA22-279A: Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors
Veröffentlicht
6. Oktober 2022 19:08
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-279a
Text
Original release date: October 6, 2022SummaryThis joint Cybersecurity Advisory (CSA) provides the top Common Vulnerabilities and Exposures (CVEs) used since 2020 by People’s Republic of China (PRC) state-sponsored cyber actors as assessed by the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), and Federal Bureau of Investigation (FBI). ...
04.10.2022
US CERT
AA22-277A: Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization
Titel
AA22-277A: Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization
Veröffentlicht
4. Oktober 2022 19:58
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-277a
Text
Original release date: October 4, 2022SummaryActions to Help Protect Against Russian State-Sponsored Malicious Cyber Activity: • Enforce multifactor authentication (MFA) on all user accounts. • Implement network segmentation to separate network segments based on role and functionality. • Update software, including operating systems, applications, and firmware, on network assets. • ...
September 2022
22.09.2022
US CERT
AA22-265A: Control System Defense: Know the Opponent
Titel
AA22-265A: Control System Defense: Know the Opponent
Veröffentlicht
22. September 2022 14:55
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-265a
Text
Original release date: September 22, 2022SummaryTraditional approaches to securing OT/ICS do not adequately address current threats. Operational technology/industrial control system (OT/ICS) assets that operate, control, and monitor day-to-day critical infrastructure and industrial processes continue to be an attractive target for malicious cyber actors. These cyber actors, including advanced persistent threat ...
21.09.2022
US CERT
AA22-264A: Iranian State Actors Conduct Cyber Operations Against the Government of Albania
Titel
AA22-264A: Iranian State Actors Conduct Cyber Operations Against the Government of Albania
Veröffentlicht
21. September 2022 19:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-264a
Text
Original release date: September 21, 2022SummaryThe Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory to provide information on recent cyber operations against the Government of Albania in July and September. This advisory provides a timeline of activity observed, from ...
21.09.2022
US CERT
A22-264A: Iranian State Actors Conduct Cyber Operations Against the Government of Albania
Titel
A22-264A: Iranian State Actors Conduct Cyber Operations Against the Government of Albania
Veröffentlicht
21. September 2022 19:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-264a
Text
Original release date: September 21, 2022SummaryThe Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory to provide information on recent cyber operations against the Government of Albania in July and September. This advisory provides a timeline of activity observed, from ...
14.09.2022
US CERT
AA22-257A: Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and ...
Titel
AA22-257A: Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations
Veröffentlicht
14. September 2022 17:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-257a
Text
Original release date: September 14, 2022SummaryActions to take today to protect against ransom operations: • Keep systems and software updated and prioritize remediating known exploited vulnerabilities. • Enforce MFA. • Make offline backups of your data. This joint Cybersecurity Advisory (CSA) is the result of an analytic effort among the ...
06.09.2022
US CERT
AA22-249A: #StopRansomware: Vice Society
Titel
AA22-249A: #StopRansomware: Vice Society
Veröffentlicht
6. September 2022 15:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-249a
Text
Original release date: September 6, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize and remediate known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce multifactor authentication. Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort ...
August 2022
16.08.2022
US CERT
AA22-228A: Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
Titel
AA22-228A: Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
Veröffentlicht
16. August 2022 17:38
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-228a
Text
Original release date: August 16, 2022SummaryActions for ZCS administrators to take today to mitigate malicious cyber activity: • Patch all systems and prioritize patching known exploited vulnerabilities. • Deploy detection signatures and hunt for indicators of compromise (IOCs). • If ZCS was compromised, remediate malicious activity. The Cybersecurity and Infrastructure ...

Letzte Updates

BOSCH PSIRT
20.03.2024
CODESYS
28.06.2023
SIEMENS CERT
19.04.2024
US CERT
17.04.2024
US CERT (ICS)
02.05.2024

Nach Quelle

Archiv

2024
2023
2022
2021
2020
2019
2018
2017

Feeds