Broadcom Software Discloses APT Actors Deploying Daxin Malware in Global Espionage Campaign 02/28/2022 10:01 AM EST Original release date: February 28, 2022 Broadcom Software—an industry member of CISA’s Joint Cyber Defense Collaborative (JCDC)—uncovers an advanced persistent threat (APT) campaign against select governments and other critical infrastructure targets in a publication titled Daxin: Stealthy Backdoor Designed …
Monthly Archives: February 2022
CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine
02/26/2022 10:00 AM EST Original release date: February 26, 2022 CISA and the Federal Bureau of Investigation have released an advisory on destructive malware targeting organizations in Ukraine. The advisory also provides recommendations and strategies to prepare for and respond to destructive malware. Additionally, CISA has created a new Shields Up Technical Guidance webpage that details other …
Continue reading “CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine”
CISA Adds Four Known Exploited Vulnerabilities to Catalog
02/25/2022 02:05 PM EST Original release date: February 25, 2022 CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in the table below. These types of vulnerabilities are a frequent attack vector for malicious cyber actors of all types and …
Continue reading “CISA Adds Four Known Exploited Vulnerabilities to Catalog”
Mozilla Releases Security Update for Mozilla VPN
Mozilla Releases Security Update for Mozilla VPN 02/25/2022 06:59 AM EST Original release date: February 25, 2022 Mozilla has released a security update to address a vulnerability in Mozilla VPN. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review Mozilla Foundation Security Advisory …
Continue reading “Mozilla Releases Security Update for Mozilla VPN”
Cisco Releases Security Updates for Multiple Products
Cisco Releases Security Updates for Multiple Products 02/24/2022 07:05 AM EST Original release date: February 24, 2022 Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit one of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories …
Continue reading “Cisco Releases Security Updates for Multiple Products”
CISA releases 4 Industrial Control Systems Advisories
CISA releases 4 Industrial Control Systems Advisories 2/24/2022 1:09 PM EST
Iranian Government-Sponsored MuddyWater Actors Conducting Malicious Cyber Operations
Iranian Government-Sponsored MuddyWater Actors Conducting Malicious Cyber Operations 02/24/2022 11:00 AM EST Original release date: February 24, 2022 CISA, the Federal Bureau of Investigation (FBI), U.S. Cyber Command Cyber National Mission Force (CNMF), the United Kingdom’s National Cyber Security Centre (NCSC-UK), and the National Security Agency (NSA) have issued a joint Cybersecurity Advisory (CSA) detailing malicious …
New Sandworm Malware Cyclops Blink Replaces VPNFilter
02/23/2022 10:00 AM EST Original release date: February 23, 2022 The United Kingdom’s National Cyber Security Centre, CISA, the National Security Agency, and the Federal Bureau of Investigation have released a joint Cybersecurity Advisory (CSA) reporting that the malicious cyber actor known as Sandworm or Voodoo Bear is using new malware, referred to as Cyclops Blink. …
Continue reading “New Sandworm Malware Cyclops Blink Replaces VPNFilter”
CISA Adds Two Known Exploited Vulnerabilities to Catalog
02/22/2022 04:50 PM EST Original release date: February 22, 2022 CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in the table below. These types of vulnerabilities are a frequent attack vector for malicious cyber actors of all types and …
Continue reading “CISA Adds Two Known Exploited Vulnerabilities to Catalog”
CISA releases 3 Industrial Control Systems Advisories
CISA releases 3 Industrial Control Systems Advisories 2/22/2022 1:33 PM EST