No Picture
Alerts

Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure

Summary Actions Critical Infrastructure Organizations Should Implement to Immediately Strengthen Their Cyber Posture.• Patch all systems. Prioritize patching known exploited vulnerabilities.• Implement multi-factor authentication.• Use antivirus software.• Develop internal contact lists and surge support. Note: this […]

No Picture
Alerts

Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities

Summary Actions to Take Today to Protect Against Iranian State-Sponsored Malicious Cyber Activity• Immediately patch software affected by the following vulnerabilities: CVE-2021-34473, 2018-13379, 2020-12812, and 2019-5591.• Implement multi-factor authentication.• Use strong, unique passwords. Note: this advisory […]

No Picture
Alerts

BlackMatter Ransomware | CISA

Summary Actions You Can Take Now to Protect Against BlackMatter Ransomware• Implement and enforce backup and restoration policies and procedures.• Use strong, unique passwords.• Use multi-factor authentication.• Implement network segmentation and traversal monitoring. Note: this advisory […]

No Picture
Alerts

Conti Ransomware | CISA

Summary Immediate Actions You Can Take Now to Protect Against Conti Ransomware• Use multi-factor authentication.• Segment and segregate networks and functions.• Update your operating system and software. Note: This Alert uses the MITRE Adversarial Tactics, […]

No Picture
Alerts

BadAlloc Vulnerability Affecting BlackBerry QNX RTOS

On August 17, 2021, BlackBerry publicly disclosed that its QNX Serious Time Operating Procedure (RTOS) is impacted by a BadAlloc vulnerability—CVE-2021-22156. BadAlloc is a selection of vulnerabilities impacting multiple RTOSs and supporting libraries.[1] A distant […]