H-ISAC: Green Reports
H-ISAC: Green Reports are shared by the American Hospital Association (AHA) Cybersecurity and Risk Advisory Services. Information within the TLP GREEN category may be shared with Health-ISAC members and trusted partners (e.g., CERTS, law enforcement, government agencies and other ISACs).
In a recently discovered malware campaign, threat actors are targeting Elastix VOIP systems to deliver remote access malware.
The information provided in the report is pulled from threat actor data leak sites ‘as is,’ meaning, it is shared as it has been posted by the threat group. They have been known to make mistakes, have typos, mis-name victims, or use other language aside from the victim name. The report shares the…
The Cybersecurity and Infrastructure Security Agency (CISA) warns industry concerns should not preclude the use of the commission's regulatory authority to mitigate exploitation of the Border Gateway Protocol.
The information provided in the report is pulled from threat actor data leak sites ‘as is,’ meaning, it is shared as it has been posted by the threat group. They have been known to make mistakes, have typos, mis-name victims, or use other language aside from the victim name.
The information provided in the report is pulled from threat actor data leak sites ‘as is,’ meaning, it is shared as it has been posted by the threat group. They have been known to make mistakes, have typos, mis-name victims, or use other language aside from the victim name.
In an abrupt change of heart, Microsoft reverts to its original operational security (OPSEC) policy of disabling Office Macros by default.
We share the report for recipient awareness. Often times, a victim may be a supplier or have another third or fourth party relationship with recipients. We hope that recipients look for those relationships and then are able to inquire directly as may be appropriate with the supposed victim.
The information provided in the report is pulled from threat actor
data leak sites ‘as is,’ meaning, it is shared as it has been
posted by the threat group. They have been known to make
mistakes, have typos, mis-name…
On July 7, 2022, Microsoft announced that VBA macros will be enabled on default, overturning its previous decision to disable them.
The information provided in the report is pulled from threat actor data leak sites ‘as is,’ meaning, it is shared as it has been posted by the threat group. They have been known to make mistakes, have typos, mis-name victims, or use other language aside from the victim name