August 2022
11.08.2022
US CERT
AA22-223A: #StopRansomware: Zeppelin Ransomware
Titel
AA22-223A: #StopRansomware: Zeppelin Ransomware
Veröffentlicht
11. August 2022 18:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-223a
Text
Original release date: August 11, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce multifactor authentication. Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to ...
04.08.2022
US CERT
AA22-216A: 2021 Top Malware Strains
Titel
AA22-216A: 2021 Top Malware Strains
Veröffentlicht
4. August 2022 20:10
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-216a
Text
Original release date: August 4, 2022SummaryImmediate Actions You Can Take Now to Protect Against Malware: • Patch all systems and prioritize patching known exploited vulnerabilities. • Enforce multifactor authentication (MFA). • Secure Remote Desktop Protocol (RDP) and other risky services. • Make offline backups of your data. • Provide end-user ...
Juli 2022
06.07.2022
US CERT
AA22-187A: North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector
Titel
AA22-187A: North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector
Veröffentlicht
6. Juli 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-187a
Text
Original release date: July 6, 2022SummaryThe Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of the Treasury (Treasury) are releasing this joint Cybersecurity Advisory (CSA) to provide information on Maui ransomware, which has been used by North Korean state-sponsored cyber actors since at least ...
Juni 2022
30.06.2022
US CERT
AA22-181A: #StopRansomware: MedusaLocker
Titel
AA22-181A: #StopRansomware: MedusaLocker
Veröffentlicht
30. Juni 2022 19:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-181a
Text
Original release date: June 30, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce multifactor authentication. Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to ...
23.06.2022
US CERT
AA22-174A: Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems
Titel
AA22-174A: Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems
Veröffentlicht
23. Juni 2022 19:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-174a
Text
Original release date: June 23, 2022SummaryActions to take today: • Install fixed builds, updating all affected VMware Horizon and UAG systems to the latest versions. If updates or workarounds were not promptly applied following VMware’s release of updates for Log4Shell in December 2021, treat all affected VMware systems as compromised. ...
08.06.2022
US CERT
AA22-158A: People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices
Titel
AA22-158A: People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices
Veröffentlicht
8. Juni 2022 00:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-158a
Text
Original release date: June 7, 2022SummaryBest Practices • Apply patches as soon as possible • Disable unnecessary ports and protocols • Replace end-of-life infrastructure • Implement a centralized patch management system This joint Cybersecurity Advisory describes the ways in which People’s Republic of China (PRC) state-sponsored cyber actors continue to ...
01.06.2022
US CERT
AA22-152A: Karakurt Data Extortion Group
Titel
AA22-152A: Karakurt Data Extortion Group
Veröffentlicht
1. Juni 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-152a
Text
Original release date: June 1, 2022SummaryActions to take today to mitigate cyber threats from ransomware: • Prioritize patching known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enforce multifactor authentication. The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Department of ...
Mai 2022
18.05.2022
US CERT
AA22-138B: Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control
Titel
AA22-138B: Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control
Veröffentlicht
18. Mai 2022 20:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-138b
Text
Original release date: May 18, 2022SummaryThe Cybersecurity and Infrastructure Security Agency (CISA) is releasing this Cybersecurity Advisory (CSA) to warn organizations that malicious cyber actors, likely advanced persistent threat (APT) actors, are exploiting CVE-2022-22954 and CVE-2022-22960 separately and in combination. These vulnerabilities affect certain versions of VMware Workspace ONE Access, ...
18.05.2022
US CERT
AA22-138A: Threat Actors Exploiting F5 BIG-IP CVE-2022-1388
Titel
AA22-138A: Threat Actors Exploiting F5 BIG-IP CVE-2022-1388
Veröffentlicht
18. Mai 2022 15:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-138a
Text
Original release date: May 18, 2022SummaryActions for administrators to take today: • Do not expose management interfaces to the internet. • Enforce multi-factor authentication. • Consider using CISA’s Cyber Hygiene Services. The Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC) are releasing this ...
17.05.2022
US CERT
AA22-137A: Weak Security Controls and Practices Routinely Exploited for Initial Access
Titel
AA22-137A: Weak Security Controls and Practices Routinely Exploited for Initial Access
Veröffentlicht
17. Mai 2022 15:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-137a
Text
Original release date: May 17, 2022SummaryBest Practices to Protect Your Systems: • Control access. • Harden Credentials. • Establish centralized log management. • Use antivirus solutions. • Employ detection tools. • Operate services exposed on internet-accessible hosts with secure configurations. • Keep software updated. Cyber actors routinely exploit poor security ...
11.05.2022
US CERT
AA22-131A: Protecting Against Cyber Threats to Managed Service Providers and their Customers
Titel
AA22-131A: Protecting Against Cyber Threats to Managed Service Providers and their Customers
Veröffentlicht
11. Mai 2022 13:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-131a
Text
Original release date: May 11, 2022SummaryTactical actions for MSPs and their customers to take today: • Identify and disable accounts that are no longer in use. • Enforce MFA on MSP accounts that access the customer environment and monitor for unexplained failed authentication. • Ensure MSP-customer contracts transparently identify ownership ...
April 2022
27.04.2022
US CERT
AA22-117A: 2021 Top Routinely Exploited Vulnerabilities
Titel
AA22-117A: 2021 Top Routinely Exploited Vulnerabilities
Veröffentlicht
27. April 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-117a
Text
Original release date: April 27, 2022SummaryThis joint Cybersecurity Advisory (CSA) was coauthored by cybersecurity authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom: the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), Australian Cyber Security Centre (ACSC), Canadian Centre ...
20.04.2022
US CERT
AA22-110A: Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure
Titel
AA22-110A: Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure
Veröffentlicht
20. April 2022 19:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-110a
Text
Original release date: April 20, 2022SummaryActions critical infrastructure organizations should implement to immediately protect against Russian state-sponsored and criminal cyber threats: • Patch all systems. Prioritize patching known exploited vulnerabilities. • Enforce multifactor authentication. • Secure and monitor Remote Desktop Protocol and other risky services. • Provide end-user awareness and ...
18.04.2022
US CERT
AA22-108A: TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies
Titel
AA22-108A: TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies
Veröffentlicht
18. April 2022 15:38
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-108a
Text
Original release date: April 18, 2022SummaryActions to take today to mitigate cyber threats to cryptocurrency: • Patch all systems. • Prioritize patching known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Use multifactor authentication. The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency ...
13.04.2022
US CERT
AA22-103A: APT Cyber Tools Targeting ICS/SCADA Devices
Titel
AA22-103A: APT Cyber Tools Targeting ICS/SCADA Devices
Veröffentlicht
13. April 2022 19:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-103a
Text
Original release date: April 13, 2022SummaryActions to Take Today to Protect ICS/SCADA Devices: • Enforce multifactor authentication for all remote access to ICS networks and devices whenever possible. • Change all passwords to ICS/SCADA devices and systems on a consistent schedule, especially all default passwords, to device-unique strong passwords to ...
März 2022
24.03.2022
US CERT
AA22-083A: Tactics, Techniques, and Procedures of Indicted State-Sponsored Russian Cyber Actors Targeting the Energy Sector
Titel
AA22-083A: Tactics, Techniques, and Procedures of Indicted State-Sponsored Russian Cyber Actors Targeting the Energy Sector
Veröffentlicht
24. März 2022 15:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-083a
Text
Original release date: March 24, 2022SummaryActions to Take Today to Protect Energy Sector Networks: • Implement and ensure robust network segmentation between IT and ICS networks. • Enforce MFA to authenticate to a system. • Manage the creation of, modification of, use of—and permissions associated with—privileged accounts. This joint Cybersecurity ...
17.03.2022
US CERT
AA22-076A: Strengthening Cybersecurity of SATCOM Network Providers and Customers
Titel
AA22-076A: Strengthening Cybersecurity of SATCOM Network Providers and Customers
Veröffentlicht
17. März 2022 20:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-076a
Text
Original release date: March 17, 2022SummaryActions to Take Today: • Use secure methods for authentication. • Enforce principle of least privilege. • Review trust relationships. • Implement encryption. • Ensure robust patching and system configuration audits. • Monitor logs for suspicious activity. • Ensure incident response, resilience, and continuity of ...
15.03.2022
US CERT
AA22-074A: Russian State-Sponsored Cyber Actors Gain Network Access by Exploiting Default Multifactor Authentication Protocols ...
Titel
AA22-074A: Russian State-Sponsored Cyber Actors Gain Network Access by Exploiting Default Multifactor Authentication Protocols and “PrintNightmare” Vulnerability
Veröffentlicht
15. März 2022 15:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-074a
Text
Original release date: March 15, 2022SummaryMultifactor Authentication (MFA): A Cybersecurity Essential • MFA is one of the most important cybersecurity practices to reduce the risk of intrusions—according to industry research, users who enable MFA are up to 99 percent less likely to have an account compromised. • Every organization should ...
Februar 2022
26.02.2022
US CERT
AA22-057A: Destructive Malware Targeting Organizations in Ukraine
Titel
AA22-057A: Destructive Malware Targeting Organizations in Ukraine
Veröffentlicht
26. Februar 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-057a
Text
Original release date: February 26, 2022SummaryActions to Take Today: • Set antivirus and antimalware programs to conduct regular scans. • Enable strong spam filters to prevent phishing emails from reaching end users. • Filter network traffic. • Update software. • Require multifactor authentication. Leading up to Russia’s unprovoked attack against ...
26.02.2022
US CERT
AA22-057A: Update: Destructive Malware Targeting Organizations in Ukraine
Titel
AA22-057A: Update: Destructive Malware Targeting Organizations in Ukraine
Veröffentlicht
26. Februar 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-057a
Text
Original release date: February 26, 2022 | Last revised: April 28, 2022SummaryActions to Take Today: • Set antivirus and antimalware programs to conduct regular scans. • Enable strong spam filters to prevent phishing emails from reaching end users. • Filter network traffic. • Update software. • Require multifactor authentication. (Updated ...
24.02.2022
US CERT
AA22-055A : Iranian Government-Sponsored Actors Conduct Cyber Operations Against Global Government and Commercial Networks
Titel
AA22-055A : Iranian Government-Sponsored Actors Conduct Cyber Operations Against Global Government and Commercial Networks
Veröffentlicht
24. Februar 2022 17:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-055a
Text
Original release date: February 24, 2022SummaryActions to Take Today to Protect Against Malicious Activity * Search for indicators of compromise. * Use antivirus software. * Patch all systems. * Prioritize patching known exploited vulnerabilities. * Train users to recognize and report phishing attempts. * Use multi-factor authentication. Note: this advisory ...
23.02.2022
US CERT
AA22-054A: New Sandworm Malware Cyclops Blink Replaces VPNFilter
Titel
AA22-054A: New Sandworm Malware Cyclops Blink Replaces VPNFilter
Veröffentlicht
23. Februar 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-054a
Text
Original release date: February 23, 2022SummaryThe Sandworm actor, which the United Kingdom and the United States have previously attributed to the Russian GRU, has replaced the exposed VPNFilter malware with a new more advanced framework. The United Kingdom's (UK) National Cyber Security Centre (NCSC), the Cybersecurity and Infrastructure Security Agency ...
16.02.2022
US CERT
AA22-047A: Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Inf...
Titel
AA22-047A: Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Information and Technology
Veröffentlicht
16. Februar 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-047a
Text
Original release date: February 16, 2022SummaryActions to Help Protect Against Russian State-Sponsored Malicious Cyber Activity: • Enforce multifactor authentication. • Enforce strong, unique passwords. • Enable M365 Unified Audit Logs. • Implement endpoint detection and response tools. From at least January 2020, through February 2022, the Federal Bureau of Investigation ...
09.02.2022
US CERT
AA22-040A: 2021 Trends Show Increased Globalized Threat of Ransomware
Titel
AA22-040A: 2021 Trends Show Increased Globalized Threat of Ransomware
Veröffentlicht
9. Februar 2022 15:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-040a
Text
Original release date: February 9, 2022SummaryImmediate Actions You Can Take Now to Protect Against Ransomware: • Update your operating system and software. • Implement user training and phishing exercises to raise awareness about the risk of suspicious links and attachments. • If you use Remote Desktop Protocol (RDP), secure and ...
Januar 2022
11.01.2022
US CERT
AA22-011A: Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure
Titel
AA22-011A: Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure
Veröffentlicht
11. Januar 2022 16:00
URL
https://us-cert.cisa.gov/ncas/alerts/aa22-011a
Text
Original release date: January 11, 2022SummaryActions Critical Infrastructure Organizations Should Implement to Immediately Strengthen Their Cyber Posture. • Patch all systems. Prioritize patching known exploited vulnerabilities. • Implement multi-factor authentication. • Use antivirus software. • Develop internal contact lists and surge support. Note: this advisory uses the MITRE Adversarial Tactics, ...

Letzte Updates

BOSCH PSIRT
20.03.2024
CODESYS
28.06.2023
SIEMENS CERT
19.04.2024
US CERT
17.04.2024
US CERT (ICS)
02.05.2024

Nach Quelle

Archiv

2024
2023
2022
2021
2020
2019
2018
2017

Feeds