Malicious cyber actors are using two sets of #TTPs to access protected data in the #cloud. Detect and mitigate against this activity by reviewing our latest #cybersecurity advisory: nsa.gov/News-Features/…
NSA Cyber
495 posts
NSA Cyber
@NSACyber
We protect our nation’s most sensitive systems against cyber threats. Likes, retweets, and follows ≠ endorsement.
Joined November 2019
- Russian Foreign Intelligence Service (SVR) cyber actors are exploiting five publicly known vulnerabilities to target U.S. and allied critical networks. Review our joint #cybersecurity guidance with @CISAgov and @FBI and apply the mitigations to stop them: nsa.gov/News-Features/…
- The Russian GRU 85th GTsSS, sometimes publicly known as #APT28 or #FancyBear, is using a previously undisclosed #Linux malware called Drovorub for cyber espionage operations. For full details and mitigations, review our #cybersecurity advisory with @FBI: nsa.gov/news-features/…
- If malicious cyber actors gain initial access to networks through the #SolarWinds compromise, the TTPs noted in our advisory may be used to forge credentials and maintain persistent access. Our guidance helps detect and mitigate against this, no matter the initial access method.Malicious cyber actors are using two sets of #TTPs to access protected data in the #cloud. Detect and mitigate against this activity by reviewing our latest #cybersecurity advisory: nsa.gov/News-Features/…
- Today our #Ghidra team pushed a preview debugger on @github. #Developers and testers, check out this long awaited feature: github.com/NationalSecuri…
- NSA urges applying critical Microsoft patches released today, as exploitation of these #vulnerabilities could allow persistent access and control of enterprise networks. msrc-blog.microsoft.com/2021/04/13/apr…
- Great news! A new version of D3FEND is now available at d3fend.mitre.org. D3FEND enables other cyber professionals to tailor defenses against specific cyber threats and reduce a system's potential attack surface. Learn more about D3FEND here: nsa.gov/Press-Room/Pre…
- Welcome to the intersection of threat intel, vulnerability analysis, and technical expertise! All to better equip you against malicious #cyber activity.
- NSA and @CISAgov share Kubernetes configurations and recommendations to harden environments against compromise. Understanding the options for building and maintaining a secure Kubernetes cluster is key to protecting your data & resources. nsa.gov/News-Features/…
- Russian military cyber actors continue to target U.S. and global critical infrastructure. Network defenders must regularly update mitigation measures to stay ahead of these attacks. Make sure you’re up to date by reading our newest guidance: nsa.gov/Press-Room/Pre…
- We collaborated with @CISAgov & @FBI on our #cybersecurity advisory, detailing Chinese state-sponsored actor #TTPs used against U.S. and allied networks. For a thorough understanding of this cyberthreat, read our overview, observed TTPs & mitigations. nsa.gov/news-features/…
- Russian Intelligence Services #APT29 is using WellMess, WellMail, and SoreFang #malware to target COVID-19 research and more. IOCs and mitigations provided in our joint #cybersecurity advisory with @NCSC, @CSE_cst, and @CISAgov nsa.gov/news-features/…
- Russian state-sponsored cyber actors are exploiting #vulnerability CVE-2020-4006 affecting VMware Workspace ONE Access. We recommend patching immediately. Read our latest #cybersecurity advisory for details, including detection and mitigation actions: nsa.gov/News-Features/…
