FBI TLP Alert
Ransomware attacks in recent months against tribal entities have caused damages estimated in the millions of dollars, and the FBI has received reports of tribal entities affected by ransomware attacks since at least 2016.
The FBI assesses ransomware actors are very likely using significant financial events, such as mergers and acquisitions, to target and leverage victim companies for ransomware infections.
The FBI first identified Ranzy Locker ransomware in late 2020 when the variant began to target victims in the United States.
Summary
The FBI has learned of an August 2021 attempt by an unknown cyber actor to use Cobalt Strike to gain unauthorized access to a US company’s network after compromising an employee’s endpoint device. The employee unintentionally installed malware on their device when, while visiting a…
The U.S. Department of Health and Human Services’ (HHS) Office of the Chief Information Officer (OCIO) Health Sector Cybersecurity Coordination Center (HC3) invites you to join us this afternoon, for the first of our bi-monthly cybersecurity threat briefings in October.
Summary
Note: This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques.
Ransomware attacks targeting the Food and Agriculture sector disrupt operations, cause financial loss, and negatively impact the food supply chain
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have observed an increase in highly impactful ransomware attacks occurring on holidays and weekends.
Summary
Hive ransomware, which was first observed in June 2021 and likely operates as an affiliate-based ransomware, employs a wide variety of tactics, techniques, and procedures (TTPs), creating significant challenges for defense and mitigation. Hive ransomware uses multiple mechanisms to…
This data is provided to help cyber security professionals and system administrators guard against the persistent malicious actions of cyber actors. This FLASH was coordinated with DHS-CISA.