CISA Alert

Response to CISA Advisory (AA25-093A): Fast Flux: A National Security Threat

| | adversary emulation, CISA Advisory, CISA Alert, fast flux
AttackIQ recommends that customers take the following testing actions in alignment with the recently published CISA Advisory (AA25-093A) which highlights the ongoing and evolving threat of fast flux techniques. These techniques are ...
AttackIQ

[CISA AA25-050A] #StopRansomware: Ghost (Cring) Ransomware

| | #StopRansomware, Attack Graph, Broad-Based Attacks, cisa, CISA Alert, Cring, Ghost, Indicators of Compromise (IOCs), Ransomware, TTPs
AttackIQ has released a new attack graph in response to the CISA Advisory (AA25-050A) published on February 19, 2025, which disseminates known Ghost Ransomware Tactics, Techniques, and Procedures (TTPs) and Indicators of ...
AttackIQ
A close up of a patient monitor screen with a heart beat

CISA/FDA Warn: Chinese Patient Monitors Have BAD Bugs

| | cisa, CISA Advisories, CISA Advisory, CISA Alert, CISA cybersecurity advisory, CISA Report, CISA Research, Contec, CVE-2024-12248, CVE-2025-0626, CVE-2025-0683, Cyber Threat on Healthcare, cyberattacks in healthcare, Cybersecurity and Infrastructure Agency, Cybersecurity and Infrastructure Security Agency, Cybersecurity for Healthcare, cybersecurity in healthcare, Epsimed, FDA, FDA guidance, fda medical device cybersecurity, Food and Drug Administration, health care, Health Care Security, healthcare, Healthcare & Life Sciences, Healthcare company, Healthcare Compliance, SB Blogwatch, USFDA
China crisis? Stop using this healthcare equipment, say Cybersecurity & Infrastructure Security Agency and Food & Drug Administration ...
Security Boulevard

Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group

| | #StopRansomware, adversary emulation, BianLian, CISA Alert, Construction, Energy, Professional Services, Ransomware, Resources & Utilities
AttackIQ has released an updated attack graph in response to the recently revised CISA Advisory (AA23-136A) that disseminates known BianLian ransomware group Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) ...
AttackIQ

Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group

| | #StopRansomware, adversary emulation, BianLian, CISA Alert, Construction, Energy, Professional Services, Ransomware, Resources & Utilities
AttackIQ has released an updated attack graph in response to the recently revised CISA Advisory (AA23-136A) that disseminates known BianLian ransomware group Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) ...
AttackIQ

Response to CISA Advisory (AA24-326A): Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization

| | adversary emulation, CISA Alert, Critical Infrastructure, cyber resilience, Cybersecurity Advisory (CSA), Red Team Assessment (RTA), Red Teaming
In response to the recently published CISA Advisory (AA24-326A) which highlights the CISA Red Team's simulation of real-world malicious cyber operations, AttackIQ has provided actionable recommendations to help organizations emulate these attacks ...
AttackIQ

Response to CISA Advisory (AA24-317A): 2023 Top Routinely Exploited Vulnerabilities

| | adversary emulation, Broad-Based Attacks, CISA Alert
In response to the recently published CISA Advisory (AA24-317A) that disseminates the top routinely exploited vulnerabilities from 2023, AttackIQ has proposed a multitude of recommendations that customers can take to emulate these ...
AttackIQ

CISA and FBI Issue Alert on XSS Vulnerabilities

| | cisa, CISA Alert, Cross-Site Scripting (XSS), Cross-Site Scripting (XSS) Attacks, Cyber threat landscape, Cybersecurity Best Practices, cybersecurity defense strategies, Cybersecurity Weaknesses, enterprise security, FBI, FBI alert, Linux & Open Source News, secure by design, Secure by Design Alert, Software Security, Vulnerability Management, XSS Vulnerabilities
Cross-site scripting (XSS) vulnerabilities continue to be a major concern in today’s software landscape, despite being preventable. CISA and FBI have issued a Secure by Design alert to reduce the prevalence of ...
TuxCare

CISA Adds Critical Linux Kernel Vulnerability to its KEV Catalog

| | cisa, CISA Alert, cisa known exploited vulnerabilities, CVE-2017-1000253, ImageMagick Vulnerabilities, ImageTragick, KernelCare Enterprise, KernelCare live patches, Known Exploited Vulnerabilities (KEV), Linux & Open Source News, Linux kernel, linux kernel patching, linux kernel vulnerabilities, linux live patching, linux systems, live patching, patch management, privilege escalation vulnerabilities, SonicOS Vulnerability
CISA has issued a warning about three new vulnerabilities that are being actively exploited. These vulnerabilities pose a significant risk to organizations and should be patched immediately. Among them, CVE-2017-1000253 is a ...
TuxCare

Response to CISA Advisory (AA24-241A): Iran-based Cyber Actors Enabling Ransomware Attacks on US Organizations

| | adversary emulation, CISA Alert, Defense Industrial Base, education, Financial Services, Fox Kitten, government, Healthcare & Life Sciences, Iran, Lemon Sandstorm, Parisite, Pioneer Kitten, RUBIDIUM, UNC757
AttackIQ has released a new assessment template in response to the CISA Advisory (AA24-241A) published on August 28, 2024. The advisory outlines espionage activity associated with a specific group of Iranian cyber ...
AttackIQ
Load more
OSZAR »