CISA and FBI alert: DarkSide ransomware used in Colonial Pipeline cyberattack (and mitigation guidance) – updated

The FBI and CISA have published a joint cybersecurity alert on a new ransomware variant "DarkSide" used in recent cyberattack against pipeline operator Colonial Pipeline. The alert also includes best practice guidance in disrupting ransomware attacks.

Continue ReadingCISA and FBI alert: DarkSide ransomware used in Colonial Pipeline cyberattack (and mitigation guidance) – updated

Alert: Attackers exploiting Pulse Connect Secure vulnerabilities (updated)

CISA warned attackers continue to exploit Pulse Connect Secure vulnerabilities. The alert was issued after CISA confirmed malicious activity on public and private entity networks. Additional detection methods were also added on April 30.

Continue ReadingAlert: Attackers exploiting Pulse Connect Secure vulnerabilities (updated)

New Supernova malware analysis reveals new APT cyberattack methods against vulnerable SolarWinds infrastructure

The Cybersecurity and Infrastructure Security Agency (CISA) has published a new analysis report on Supernova malware used in a cyberattack and long term compromise of an entity's network and SolarWinds systems.

Continue ReadingNew Supernova malware analysis reveals new APT cyberattack methods against vulnerable SolarWinds infrastructure

FBI and CISA issue urgent joint cybersecurity advisory on Exchange server hacks

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued an urgent joint cybersecurity advisory on the Microsoft Exchange vulnerability exploits.

Continue ReadingFBI and CISA issue urgent joint cybersecurity advisory on Exchange server hacks