Update: FBI, CISA issue new warning of sophisticated spearphishing campaign

Jun 01, 2021 - 02:07 PM
FDAcybersecurity

The FBI and Cybersecurity and Infrastructure Security Agency May 28 issued a joint cyber advisory in response to a sophisticated spearphishing campaign targeting government organizations, intergovernmental organizations and non-governmental organizations. The Microsoft Threat Intelligence Center originally flagged the threat last week, which is associated with the 2020 compromise of the SolarWinds Orion platform.

“In this latest report, it is noted that CISA and FBI acknowledge open-source reporting attributing the activity discussed in the report to the cyber adversaries responsible for the SolarWinds breach,” said John Riggi, AHA’s senior advisor for cybersecurity and risk. “However, CISA and FBI have not attributed this campaign to any threat actor at this time and have advised they will update this Joint Cybersecurity Advisory as new information becomes available.” For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org.

 

Related News Articles

Headline
Agencies issue advisory on threat of China-based cyber group 
A joint advisory issued the week of July 8 by the Cybersecurity and Infrastructure Security Agency, National Security Agency, FBI and several international…
Headline
AHA comments on CIRCIA’s cyber incident reporting requirements 
The AHA July 2 submitted comments to the Cybersecurity and Infrastructure Security Agency on its proposed rule establishing reporting requirements for…
Headline
HHS issues cyber alert on critical vulnerability in ‘MOVEit,’ file transfer platform
The Department of Health and Human Services Health Sector Cybersecurity Coordination Center June 27 issued an alert about a critical vulnerability in MOVEit, a…
Headline
Agencies issue joint report on memory safety vulnerabilities in open source projects
A joint report released June 26 by the Cybersecurity and Infrastructure Security Agency, FBI, the Australian Cyber Security Centre and Canadian Centre for…
Headline
Bulletin alerts health sector to cyberthreat exploits on TeamViewer
The Health Information Sharing and Analysis Center June 27 issued a threat bulletin alerting the health sector to active cyberthreats exploiting TeamViewer. H-…
Headline
FBI, HHS issue advisory on cyberthreat actors targeting health care to divert payments
The FBI and Department of Health and Human Services June 24 released an advisory about cyberthreat actors targeting health care organizations in attempts to…