FBI Archives - Securezoo

Royal Ransomware uses a unique “partial encryption approach” to evade detection

Cybersecurity Attacks, Malware, Phishing, Ransomware / By Frank Crast / March 3, 2023 / CISA, Cobalt Strike, encryption, FBI, Ransomware, RMM, Royal, SysInternals, Zeon

CISA and FBI have published a joint cybersecurity alert on Royal ransomware used in recent cyberattacks as recently as January 2023. The ransomware uses a unique “partial encryption approach” to evade detection.

Cuba ransomware attacks on the rise with new exploits

Cybersecurity Articles, Malware, Ransomware, Vulnerabilities & Exploits / By Frank Crast / December 4, 2022 / C2, CISA, Cuba, CVE-2020-1472, CVE-2022-24521, FBI, H0lyGh0st, KerberCache, Kerberoasting, LockBit, malware, Ransomware, RomCom, Spy Marketplace, Zeppelin

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint Cybersecurity Advisory (CSA) with new details regarding Cuba Ransomware attacks.

Cybercriminals use proxies and configurations to launch credential stuffing attacks

Application Security, Cybersecurity Attacks, Password Management / By Frank Crast / August 22, 2022 / CDN, Cyberattack, Cybersecurity Threat Center, FBI, MFA, OWASP, passwords, SSL

The Federal Bureau of Investigation (FBI) have spotted cybercriminals using proxies and configurations to launch credential stuffing attacks against US companies.

Zeppelin Ransomware threatens wide range of businesses and critical infrastructure organizations

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / August 16, 2022 / #StopRansomware, CISA, FBI, Ransomware, Vega, Zeppelin

The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) have issued a joint cybersecurity advisory on Zeppelin Ransomware.

Maui ransomware targets entities in the Healthcare and Public Health sector

Cybersecurity Attacks, Malware / By Frank Crast / July 6, 2022 / CISA, Cybersecurity Threat Center, FBI, Health, healthcare, HPH, Maui, Public Health, Treasury

Cybersecurity experts warn North Korean State-Sponsored threat actors are using Maui ransomware to target entities in the Healthcare and Public Health (HPH) sector.

PRC state-sponsored cyber actors routinely exploit these 16 network device vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / June 8, 2022 / CISA, Cisco, Citrix, CVE-2017-6862, CVE-2018-0171, CVE-2018-13382, CVE-2018-14847, CVE-2019-11510, CVE-2019-15271, CVE-2019-1652, CVE-2019-16920, CVE-2019-19781, CVE-2019-7192, CVE-2019-7193, CVE-2019-7194, CVE-2019-7195, CVE-2020-29583, CVE-2020-8515, CVE-2021-22893, FBI, MicroTik, NETGEAR, NSA, Pulse, QNAP, SOHO, ZyXEL

The FBI, NSA and CISA coauthored a joint Cybersecurity Advisory detailing how People’s Republic of China (PRC) state-sponsored cyber actors continue to exploit publicly known vulnerabilities to gain access to a broad network of compromised infrastructure.

ransomware, cybersecurity, cyber-3998798.jpg

FBI: AvosLocker Ransomware targets victims in critical infrastructure sectors

Malware, Vulnerabilities & Exploits / By Frank Crast / March 21, 2022 / AvosLocker, CVE-2021-31207, CVE-2021-34473, CVE-2021-34523, FBI, IOC, malware

The Federal Bureau of Investigation (FBI) has issued a report of cybercriminals using AvosLocker ransomware to target 52 entities across critical infrastructure sectors. The report includes the latest indicators of compromise (IoC) on the ransomware threat.

FBI alert: RagnarLocker Ransomware targeted 52 entities

Cybersecurity Attacks, Malware / By Frank Crast / March 9, 2022 / FBI, RagnarLocker, Ransomware

The Federal Bureau of Investigation (FBI) has issued a report of cybercriminals using RagnarLocker ransomware to target 52 entities across critical infrastructure sectors. The report includes the latest updates on indicators of compromise (IoC) on the ransomware threat.

BlackByte Ransomware compromised multiple entities in US critical infrastructure sectors

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / February 19, 2022 / BlackByte, Exchange, FBI, Infrastructure, RaaS, Ransomware, USSS

The Federal Bureau of Investigation (FBI) and the U.S. Secret Service (USSS) issued a joint Cybersecurity Advisory warning of BlackByte ransomware compromising multiple entities in US critical infrastructure sectors.

FBI: Beware of cybercriminal SIM swap schemes

Cybersecurity Attacks, Phishing / By Frank Crast / February 11, 2022 / FBI, IC3, mobile, SIM, SIM swap, SMS

The Federal Bureau of Investigation (FBI) has issued a cybersecurity alert for Subscriber Identity Module (SIM) swap schemes used by cybercriminals to steal millions from US victims.