Month: June 2023
-
Cactus Ransomware Group: An Emerging Threat in 2023
In today’s ever-evolving cybersecurity landscape, staying ahead of emerging threats is crucial. One threat that has recently taken the stage is the Cactus Ransomware Group. This clandestine organization has captured the attention of cybersecurity professionals worldwide, causing significant concern. In this blog post, we aim to explore the inner workings, tactics, and effective mitigation strategies… Read more
-
CISA and Partners Release the Guide to Securing Remote Access Software
Today, CISA, the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), the Multi-State Information Sharing and Analysis Center (MS-ISAC), and the Israel National Cyber Directorate (INCD) published the Guide to Securing Remote Access Software to provide organizations with an overview of common remote access exploitations and associated tactics, techniques, and procedures (TTPs). The Guide… Read more
-
Vulnerability Summary for the Week of May 29, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which… Read more
-
Progress Software Releases Security Advisory for MOVEit Transfer
Progress Software has released a security advisory for a vulnerability in MOVEit Transfer—a Managed File Transfer Software. A cyber threat actor could exploit this vulnerability to take over an affected system. CISA urgers users and organizations to review the MOVEit Transfer Advisory, follow the mitigation steps, apply the necessary updates, and hunt for any malicious activity.… Read more