Alerts – Tu Cloud Server

Mitigate Microsoft Exchange Server Vulnerabilities

March 3, 2021 admin Comments Off

Microsoft has released out-of-band security updates to address four vulnerabilities in Exchange Server: It is possible for an attacker, once authenticated to the Exchange server, to gain access to the Active Directory environment and download […]

Exploitation of Accellion File Transfer Appliance

February 24, 2021 admin Comments Off

This joint advisory is the end result of a collaborative effort by the cybersecurity authorities of Australia,[1] New Zealand,[2] Singapore,[3] the United Kingdom,[4] and the United States.[5][6] These authorities are mindful of cyber actors exploiting […]

AppleJeus: Analysis of North Korea’s Cryptocurrency Malware

February 17, 2021 admin Comments Off

The North Korean government has used multiple versions of AppleJeus since the malware was initially discovered in 2018. This section outlines seven of the versions below. The MARs listed above provide further technical details of […]

Compromise of U.S. Water Treatment Facility

February 11, 2021 admin Comments Off

Summary On February 5, 2021, unknown cyber actors attained unauthorized accessibility to the supervisory manage and data acquisition (SCADA) procedure at a U.S. drinking water therapy plant. The unidentified actors applied the SCADA system’s application […]

Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments

January 8, 2021 admin Comments Off

This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This Alert is a companion alert to AA20-252A: Advanced […]

Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations

December 17, 2020 admin Comments Off

This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 8 framework. See the ATT&CK for Enterprise version 8 for all referenced threat actor tactics and techniques. The Cybersecurity and Infrastructure Security […]

Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data

December 10, 2020 admin Comments Off

This Joint Cybersecurity Advisory was coauthored by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC). The FBI, CISA, and MS-ISAC assess […]

Advanced Persistent Threat Actors Targeting U.S. Think Tanks

December 1, 2020 admin Comments Off

This Advisory takes advantage of the MITRE Adversarial Practices, Tactics, and Common Know-how (ATT&CK®) framework. See the ATT&CK for Business for all referenced risk actor techniques and methods. The Cybersecurity and Infrastructure Safety Company (CISA) […]

Iranian Advanced Persistent Threat Actor Identified Obtaining Voter Registration Data

October 30, 2020 admin Comments Off

This advisory utilizes the MITRE Adversarial Ways, Techniques, and Widespread Awareness (ATT&CK®) version 7 framework. See the ATT&CK for Organization edition 7 for all referenced menace actor strategies and techniques. This joint cybersecurity advisory was […]

Ransomware Activity Targeting the Healthcare and Public Health Sector

October 29, 2020 admin Comments Off

Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques. This joint cybersecurity advisory […]