Russian Cyber Actors Exploit MFA Protocols in Network Attack, CISA Warns
Russian state-sponsored cyber actors have used misconfigured default MFA protocols to access networks & exploit the “Windows Print Spooler” vulnerability, CISA warns.
How to Mitigate BlackMatter Ransomware Attacks: Tips for MSSPs, MSPs
Here are 13 steps to reduce the threat of BlackMatter ransomware attacks, according to joint CISA, FBI and NSA cybersecurity advisory.
Labor Day Weekend Ransomware Attacks? FBI, CISA Memo Offers Proactive Warning
The FBI & CISA warn organizations to be on the alert for ransomware attacks on U.S. critical infrastructure during U.S. Labor Day weekend.
OnePercent Group Ransomware: Here’s What MSSPs Need to Know
The FBI issues an alert regarding OnePercent Group ransomware attacks & the indicators of compromise (IOCs) associated with them.
Should Congress Ban U.S. Companies from Paying Ransomware Hackers?
Should Congress ban U.S. companies from paying ransomware hacker groups for decryption keys?
FireEye Hires Former FBI Executive to Drive Mandiant Alliances
Cybersecurity company FireEye names Erin Joe as SVP of strategy & alliances for Mandiant’s government & private sector partnerships.
FBI Director Wray Tells Ransomware Victims Not to Pay Up
Don’t ever pay hackers’ ransomware demands, FBI Director Christopher Wray advised. But is a non-payment stance vs. ransomware possible?
FBI Investigating 100 Ransomware Variants
The FBI is examining 100 different ransomware variants & now considers ransomware attacks as terrorism, FBI Director Christopher Wray tells the Wall Street Journal.
China Harnesses Taidoor Malware for Remote Access Attacks, DHS Warns
China’s government leverages Taidoor malware for remote access trojan attacks, according to The Department of Homeland Security’s CISA, the FBI, and the Department of Defense (DoD) warning.
Cyber Insurance Cyberattack: Chubb Investigates Possible Hack
Chubb, a U.S. commercial insurer, investigates possible cyberattack that allegedly involved unauthorized access to data held by a third-party service provider.
