FBI TLP Alert
Cyber actors have exploited built-in network protocols, designed to reduce computational overhead of day-to-day system and operational functions, to conduct larger and more destructive distributed denial of service (DDoS) amplification attacks against US networks
The FBI has observed unattributed cyber actors registering numerous domains spoofing legitimate US-based airport websites, indicating the potential for future operational activity.
Nation-state cyber actors are targeting many domestic universities, research institutes, and private companies conducting COVID-19-related research.
Criminal and nation-state cyber actors since February 2020 have been increasingly targeting US pharmaceutical, medical, and biological research facilities to acquire or manipulate sensitive information, to include COVID-19 vaccine and treatment research amid the evolving global pandemic.
Unknown cybercriminals have targeted more than 1,000 US and international businesses with Ryuk ransomware since approximately August 2018.
Unknown cyber actors have targeted multiple US and international businesses with Maze ransomware since early 2019.
Since December 2019, an increasing number of businesses and consumers have been affected by fraudulent sales of PPE. The FBI has received at least 45 consumer complaints of fraud and counterfeiting involving 3M PPE, involving over $642,000 in losses. 3M Recommends Only…
Following a global increase in malicious cyber activity exploiting fear derived from the COVID-19 pandemic, the FBI was notified of targeted email phishing attempts against US-based medical providers.
The FBI anticipates cyber actors will exploit increased use of virtual environments by government agencies, the private sector, private organizations, and individuals as a result of the COVID-19 pandemic.
Cyber criminals are targeting organizations that use popular cloud-based email services to conduct Business Email Compromise (BEC) scams. The scams are initiated through specifically developed phish kits designed to mimic the cloud-based email services in order to compromise business email accounts…