Iran-Based Threat Actor Exploits VPN Vulnerabilities

Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) are aware of a widespread campaign from an Iran-based malicious cyber actor targeting several industries mainly associated with information technology, government, healthcare, financial, insurance, and media sectors across the United States. The threat actor conducts mass scanning and uses tools, such as Nmap, … More Iran-Based Threat Actor Exploits VPN Vulnerabilities

CISA – Defending Against Malicious Cyber Activity Originating from Tor

CISA – The US Cybersecurity & Infrastructure Security Agency have released through the National Cyber Awareness System an advisory highlighting risks associated with Tor (the Onion Router). Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CKĀ®) and Pre-ATT&CK framework. See the ATT&CK for Enterprise and Pre-ATT&CK frameworks for referenced threat actor … More CISA – Defending Against Malicious Cyber Activity Originating from Tor