CISA Cybersecurity Alerts

CISA Cybersecurity Alerts

Flash cybersecurity advisories from the US Government. These alerts provide timely technical and operational information, indicators of compromise, and mitigations for current major security threats, vulnerabilities, and exploits. These alerts have been edited and adapted for audio by The CyberWire as a public service.

Trailer

Recent Episodes

Ep 52 | 6.15.23

CISA Alert AA23-165A – Understanding Ransomware Threat Actors: LockBit.

CISA, FBI, the MS-ISAC, and international partners are releasing this Cybersecurity Advisory to detail LockBit ransomware incidents and provide recommended mitigations to enable network defenders to proactively improve their organization’s defenses against this ransomware operation.

TranscriptTranscript
Ep 51 | 6.9.23

CISA Alert AA23-158A – #StopRansomware: CL0P Ransomware Gang Exploits CVE-2023-34362 MOVEit Vulnerability.

FBI and CISA are releasing this joint CSA to disseminate known CL0P ransomware IOCs and TTPs identified through FBI investigations as recently as June 2023.

TranscriptTranscript
Ep 50 | 5.25.23

CISA Alert AA23-144A – People's Republic of China state-sponsored cyber actor living off the land to evade detection.

Cybersecurity authorities are issuing this joint Cybersecurity Advisory to highlight a recent cluster of activity associated with a People’s Republic of China state-sponsored cyber actor, also known as Volt Typhoon.

TranscriptTranscript
Ep 49 | 5.18.23

CISA Alert AA23-136A – #StopRansomware: BianLian Ransomware Group.

FBI, CISA, and the Australian Cyber Security Centre are releasing this joint Cybersecurity Advisory to disseminate known BianLian ransomware and data extortion group IOCs and TTPs identified through FBI and ACSC investigations as of March 2023.

TranscriptTranscript
Ep 48 | 5.12.23

CISA Alert AA23-131A – Malicious Actors Exploit CVE-2023-27350 in PaperCut MF and NG.

FBI and CISA are releasing this joint Cybersecurity Advisory in response to the active exploitation of CVE-2023-27350. This vulnerability occurs in certain versions of PaperCut NG and PaperCut MF, software applications that help organizations manage printing services, and enables an unauthenticated actor to execute malicious code remotely without credentials.

TranscriptTranscript
Load More
CISA Cybersecurity Alerts
Schedule: Ad Hoc
Credits: Alert sources include the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA). Technical Editor is Brandon Karpf, Producer is Jennifer Eiben, Audio Engineering, Editing and original music by Elliott Peltzman.
Creator: CyberWire, Inc.
CyberWire logo