FBI TLP Alert
On 5 February 2021, unidentified cyber actors obtained unauthorized access to the supervisory control and data acquisition (SCADA) system at a US water treatment plant. The cyber actors likely accessed the system by exploiting cyber security weaknesses including poor password security, and an…
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have observed—since the summer of 2020—a surge of DoppelPaymer ransomware attacks against emergency services and healthcare entities.
Picture Archiving Communication Systems (PACS) are widely used by hospitals, research institutions, clinics and small healthcare practices for sharing patient data and medical images. In 2019, researchers disclosed a vulnerability in these systems that if exploited could potentially expose patient…
The FBI Detroit Field Office, in coordination with the Office of Private Sector (OPS), prepared this LIR to inform members of the health care industry and the financial sector on mass marketing fraud schemes targeting medical providers for financial gain. Recent reporting from multiple sources…
As of June 2020, the FBI has received notifications of Netwalker ransomware attacks on U.S. and foreign government organizations, education entities, private companies, and health agencies by unidentified cyber actors. Netwalker became widely recognized in March 2020, after intrusions on an…
The FBI is providing warning that a group of Iran-based malicious cyber actors was attempting to exploit CVE-2020-5902 as of early July 2020. This group has conducted a significant number of intrusions against US-based networks since August 2019, leveraging several CVEs pertaining to Virtual…
Today the FBI warned in a limited distribution report of a sophisticated and aggressive nation state campaign targeting known VPN vulnerabilities. The vulnerabilities have been previously published in a number of critical, common vulnerabilities and exposures (CVE) reports dating back to 2019.
The FBI seeks to inform US companies in the healthcare, chemical, and finance sectors of potential targeting activity by the Chinese government against their business and operational components based in China.
Cyber criminals could exploit vulnerabilities in electronic logging devices (ELDs), which became required equipment in most commercial trucking operations as of 16 December 2019 due to a federal regulatory mandate.
The US Department of Justice (DOJ) indicted two People’s Republic of China (PRC) cyber actors for stealing hundreds of millions of dollars’ worth of trade secrets, intellectual property, and other high-value information from biotechnical, commercial, and government victims in the United States and…