Alerts – Tu Cloud Server

Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure

January 11, 2022 admin Comments Off

Summary Actions Critical Infrastructure Organizations Should Implement to Immediately Strengthen Their Cyber Posture.• Patch all systems. Prioritize patching known exploited vulnerabilities.• Implement multi-factor authentication.• Use antivirus software.• Develop internal contact lists and surge support. Note: this […]

Mitigating Log4Shell and Other Log4j-Related Vulnerabilities

December 22, 2021 admin Comments Off

The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), National Security Agency (NSA), Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), the Computer Emergency Response Team New Zealand […]

APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus

December 2, 2021 admin Comments Off

Summary This joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise framework for referenced threat actor techniques and for mitigations. This joint advisory […]

Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities

November 17, 2021 admin Comments Off

Summary Actions to Take Today to Protect Against Iranian State-Sponsored Malicious Cyber Activity• Immediately patch software affected by the following vulnerabilities: CVE-2021-34473, 2018-13379, 2020-12812, and 2019-5591.• Implement multi-factor authentication.• Use strong, unique passwords. Note: this advisory […]

BlackMatter Ransomware | CISA

October 18, 2021 admin Comments Off

Summary Actions You Can Take Now to Protect Against BlackMatter Ransomware• Implement and enforce backup and restoration policies and procedures.• Use strong, unique passwords.• Use multi-factor authentication.• Implement network segmentation and traversal monitoring. Note: this advisory […]

Ongoing Cyber Threats to U.S. Water and Wastewater Systems

October 14, 2021 admin Comments Off

Summary Immediate Actions WWS Facilities Can Take Now to Protect Against Malicious Cyber Activity• Do not click on suspicious links.• If you use RDP, secure and monitor it.• Use strong passwords.• Use multi-factor authentication. Note: […]

Conti Ransomware | CISA

September 22, 2021 admin Comments Off

Summary Immediate Actions You Can Take Now to Protect Against Conti Ransomware• Use multi-factor authentication.• Segment and segregate networks and functions.• Update your operating system and software. Note: This Alert uses the MITRE Adversarial Tactics, […]

APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus

September 16, 2021 admin Comments Off

Summary This Joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 8. See the ATT&CK for Enterprise for referenced threat actor tactics and for techniques. This joint advisory is […]

Ransomware Awareness for Holidays and Weekends

August 31, 2021 admin Comments Off

Immediate Actions You Can Take Now to Protect Against Ransomware• Make an offline backup of your data.• Do not click on suspicious links.• If you use RDP, secure and monitor it.• Update your OS and […]

BadAlloc Vulnerability Affecting BlackBerry QNX RTOS

August 17, 2021 admin Comments Off

On August 17, 2021, BlackBerry publicly disclosed that its QNX Serious Time Operating Procedure (RTOS) is impacted by a BadAlloc vulnerability—CVE-2021-22156. BadAlloc is a selection of vulnerabilities impacting multiple RTOSs and supporting libraries.[1] A distant […]