You are here

Cyber Security

Cyber/Data Security News

News

June, 01 2021 The Federal Bureau of Investigation (FBI) has released an FBI FLASH, APT Actors Exploiting Fortinet Vulnerabilities to Gain Access for Malicious Activity, which describes advanced persistent threat (APT) actors exploiting known Fortinet FortiOS vulnerabilities. APT actors may exploit these vulnerabilities to gain initial access to multiple government, commercial, and technology services to conduct future attacks. This is a follow up to the FBI-CISA Joint Cybersecurity Advisory AA21-092A: APT Actors Exploit Vulnerabilities to Gain Initial Access for Future Attack, originally published April 2, and provides indicators of compromise (IOCs) and additional recommended mitigations. CISA encourages users and administrators to review the IOCs and updated mitigations in FBI FLASH MI-000148-MW and refer back to AA21-092A for additional information.

Links:

https://www.ic3.gov/Media/News/2021/210527.pdf

https://us-cert.cisa.gov/ncas/current-activity/2021/04/02/fbi-cisa-joint...

https://www.ic3.gov/Media/News/2021/210527.pdf

https://us-cert.cisa.gov/ncas/current-activity/2021/04/02/fbi-cisa-joint...

News

March 03, 2021 CISA has issued Emergency Directive (ED) 21-02 and Alert AA21-062A addressing critical vulnerabilities in Microsoft Exchange products. Successful exploitation of these vulnerabilities allows an attacker to access on-premises Exchange servers, enabling them to gain persistent system access and control of an enterprise network. CISA strongly recommends organizations examine their systems to detect any malicious activity detailed in Alert AA21-062A. Review the following resources

12/10/2020 CISA/FBI/MS-ISAC Ransomware Alert for K-12 Schools; Recently CISA (The Cybersecurity and Infrastructure Security Agency) in coordination with the FBI and MS-ISAC put forth an alert (https://us-cert.cisa.gov/ncas/alerts/aa20-345a) warning of increased ransomware threats against K-12 schools and districts. Please take time to review this alert, increase your cyber security posture, and share with stakeholders within your district as well as other institutions you think need the information. In the event of a cyber / ransomware incident please contact the Wisconsin’s Cyber Response Team at 1-800-943-0003.
For questions about this information, contact Ed Snow (608) 267-2346