Register

Tag: Active Directory

Dutch report exposes expanded COATHANGER campaign, as cyber espionage campaign targets edge devices
Dutch report exposes expanded COATHANGER campaign, as cyber espionage campaign targets edge devices
Following the February report by the Dutch National Cyber Security Centre (NCSC) on the advanced COATHANGER malware targeting FortiGate systems, further investigation by the Dutch Military Intelligence and Security Service (MIVD) and the Dutch General Intelligence and Security Service (AIVD)…
Nobelium’s post-compromise capability MagicWeb exploits federal agencies, NGOs, IGOs, think tanks
Nobelium’s post-compromise capability MagicWeb exploits federal agencies, NGOs, IGOs, think tanks
Microsoft security researchers provided details this week of a post-compromise capability, named MagicWeb, which is used by the Nobelium hacker group, to maintain persistent access to compromised environments. It has been identified that Nobelium remains highly active, executing multiple campaigns…
FBI releases new details of BlackCat/ALPHV ransomware, indicating that hackers are still active
FBI releases new details of BlackCat/ALPHV ransomware, indicating that hackers are still active
The Federal Bureau of Investigation (FBI) released on Tuesday an alert with updated details of the indicators of compromise (IOCs) used by the BlackCat/ALPHV ransomware, highlighting that the hackers continue to be active adversaries. “As of March 2022, BlackCat/ALPHV ransomware…
US security agencies reveal that Russian hackers breach MFA, PrintNightmare vulnerability in NGO network
US security agencies reveal that Russian hackers breach MFA, PrintNightmare vulnerability in NGO network
U.S. security agencies released a joint cybersecurity advisory (CSA) warning organizations of Russian state-sponsored hackers having gained network access to a non-governmental organization (NGO). The adversaries gained access by exploiting default multi-factor authentication (MFA) protocols and a Windows Print Spooler…
BlackMatter ransomware
FBI, NSA, CISA warns critical infrastructure entities of attacks using BlackMatter ransomware
U.S. security agencies released on Monday a joint cybersecurity advisory notifying organizations of cyber attackers using the BlackMatter ransomware that could potentially target multiple critical infrastructure entities. Ransomware attacks against critical infrastructure entities could directly affect consumer access to critical…

More Tag: Active Directory posts:

ADSelfService Plus
US security agencies alert on active exploitation of a vulnerability in ManageEngine ADSelfService Plus

Join the Industrial Cyber Community

Get the latest breaking OT/ICS news, access the resources and participate in our ICS Forum.
Register