CISA and International Partners Release Malware Analysis Report on Infamous Chisel Mobile Malware 08/31/2023 08:00 AM EDT Today, the United Kingdom’s National Cyber Security Centre (NCSC-UK), the United States’ Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI), New Zealand’s National Cyber Security Centre (NCSC-NZ), Canadian Centre for …
Tag Archives: malware
CISA and FBI Publish Joint Advisory on QakBot Infrastructure
CISA and FBI Publish Joint Advisory on QakBot Infrastructure 08/30/2023 03:00 PM EDT Today, the Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory (CSA), Identification and Disruption of QakBot Infrastructure, to help organizations detect and protect against newly identified QakBot-related activity and malware. QakBot—also known as …
Continue reading “CISA and FBI Publish Joint Advisory on QakBot Infrastructure”
VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere
VMWare Releases Guidance for VirtualPITA, VirtualPIE, and VirtualGATE Malware Targeting vSphere 09/29/2022 05:13 PM EDT Original release date: September 29, 2022 VMWare has released Protecting vSphere From Specialized Malware, addressing malware artifacts known as VirtualPITA (ESXi & Linux), VirtualPIE (ESXi), and VirtualGATE (Windows), which are used to exploit and gain persistent access to instances of …
AA22-216A: 2021 Top Malware Strains
AA22-216A: 2021 Top Malware Strains 08/04/2022 02:10 PM EDT Original release date: August 4, 2022 Summary Immediate Actions You Can Take Now to Protect Against Malware: • Patch all systems and prioritize patching known exploited vulnerabilities.• Enforce multifactor authentication (MFA).• Secure Remote Desktop Protocol (RDP) and other risky services.• Make offline backups of your data.• …
CISA and FBI Update Advisory on Destructive Malware Targeting Organizations in Ukraine
CISA and FBI Update Advisory on Destructive Malware Targeting Organizations in Ukraine 04/28/2022 10:00 AM EDT Original release date: April 28, 2022 CISA and the Federal Bureau of Investigation (FBI) have updated joint Cybersecurity Advisory AA22-057A: Destructive Malware Targeting Organizations in Ukraine, originally released February 26, 2022. The advisory has been updated to include additional …
Broadcom Software Discloses APT Actors Deploying Daxin Malware in Global Espionage Campaign
Broadcom Software Discloses APT Actors Deploying Daxin Malware in Global Espionage Campaign 02/28/2022 10:01 AM EST Original release date: February 28, 2022 Broadcom Software—an industry member of CISA’s Joint Cyber Defense Collaborative (JCDC)—uncovers an advanced persistent threat (APT) campaign against select governments and other critical infrastructure targets in a publication titled Daxin: Stealthy Backdoor Designed …
CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine
02/26/2022 10:00 AM EST Original release date: February 26, 2022 CISA and the Federal Bureau of Investigation have released an advisory on destructive malware targeting organizations in Ukraine. The advisory also provides recommendations and strategies to prepare for and respond to destructive malware. Additionally, CISA has created a new Shields Up Technical Guidance webpage that details other …
Continue reading “CISA Releases Advisory on Destructive Malware Targeting Organizations in Ukraine”
New Sandworm Malware Cyclops Blink Replaces VPNFilter
02/23/2022 10:00 AM EST Original release date: February 23, 2022 The United Kingdom’s National Cyber Security Centre, CISA, the National Security Agency, and the Federal Bureau of Investigation have released a joint Cybersecurity Advisory (CSA) reporting that the malicious cyber actor known as Sandworm or Voodoo Bear is using new malware, referred to as Cyclops Blink. …
Continue reading “New Sandworm Malware Cyclops Blink Replaces VPNFilter”
Microsoft Warns of Destructive Malware Targeting Ukrainian Organizations
Microsoft Warns of Destructive Malware Targeting Ukrainian Organizations 01/16/2022 09:13 AM EST Original release date: January 16, 2022 Microsoft has released a blog post on possible Master Boot Record (MBR) Wiper activity targeting Ukrainian organizations, including Ukrainian government agencies. According to Microsoft, powering down the victim device executes the malware, which overwrites the MBR with …
Continue reading “Microsoft Warns of Destructive Malware Targeting Ukrainian Organizations”
CNMF Identifies and Discloses Malware used by Iranian APT MuddyWater
CNMF Identifies and Discloses Malware used by Iranian APT MuddyWater 01/12/2022 03:34 PM EST Original release date: January 12, 2022 U.S. Cyber Command’s Cyber National Mission Force (CNMF) has identified multiple open-source tools used by an Iranian advanced persistent threat (APT) group known as MuddyWater. According to CNMF, “MuddyWater has been seen using a variety …
Continue reading “CNMF Identifies and Discloses Malware used by Iranian APT MuddyWater”