AttackIQ – Page 2 – Cybersecurity News Everyday

Response to CISA Advisory (AA24-038A): PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure

February 10, 2024May 16, 2024 AttackIQ

On February 7, 2024, the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory (CSA) assessing that People’s Republic of China (PRC) state-sponsored cyber actors were seeking to pre-position themselves on IT networks for disruptive or destructive cyberattacks against U.S.…

Threat Research

Response to Ivanti’s Recent Zero-day Vulnerability Exploitation

February 7, 2024May 16, 2024 AttackIQ

On January 10, 2024, the software company Ivanti disclosed two vulnerabilities impacting Ivanti Connect Secure VPN, formerly Pulse Secure, and Ivanti Policy Secure appliances. Successful exploitation of these vulnerabilities could result in authentication bypass and command injection, leading to further downstream compromise of a victim network.…

Threat Research

Response to CISA Advisory (AA23-353A): #StopRansomware: ALPHV BlackCat

December 29, 2023May 16, 2024 AttackIQ

On December 19, 2023, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released a join Cybersecurity Advisory (CSA) that disseminates Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) associated with the ALPHV BlackCat Ransomware-as-a-Service (RaaS) identified through FBI investigations as recently as December 6, 2023.…

Author: AttackIQ

Response to CISA Advisory (AA24-038A): PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure

Response to Ivanti’s Recent Zero-day Vulnerability Exploitation

Response to CISA Advisory (AA23-353A): #StopRansomware: ALPHV BlackCat