CISA Alert

Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities

Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities

| | Broad-Based Attacks, cisa, CISA Alert, Microsoft, sharepoint
AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the exploitation of the CVE-2025-49704, CVE-2025-49706, CVE-2025-53770, and CVE-2025-53771 vulnerabilities, which affect on-premises Microsoft SharePoint servers ...
AttackIQ
Microsoft, security Active Director

Hackers Exploiting Microsoft Flaw to Attack Governments, Businesses

| | 0-day vulnerability, CISA Alert, Microsoft SharePoint Server, Microsoft Windows
Hackers are exploiting a significant Microsoft vulnerability chain that allows them gain control of on-premises SharePoint servers, steal cryptographic keys, and access Windows applications like Outlook, Teams, and OneDrive. It also gives ...
Security Boulevard
A long freight train passes by

‘FRED’ Security FAIL — Ignored by US Rail for 20 YEARS

| | American Association of Railways (AAR), cisa, CISA Advisories, CISA Advisory, CISA Alert, CISA cybersecurity advisory, CVE-2025-1727, Cybersecurity and Infrastructure Security Agency, Cybersecurity Infrastructure Security Administration, FRED, ICS/SCADA, ICS/SCADA Cybersecurity, ICS/SCADA Security, ICS/SCADA systems, ICS/SCADA Wireless Attacks, RADIO-STOP, Rail Cybersecurity, railroad, Railway Security, SB Blogwatch, sdr, software defined radio (SDR), trains, wireless
BCH vs. SDR, AAR vs. CISA: Railroad industry first warned about this nasty vulnerability in 2005 ...
Security Boulevard

Response to CISA Advisory (AA25-093A): Fast Flux: A National Security Threat

| | adversary emulation, CISA Advisory, CISA Alert, fast flux
AttackIQ recommends that customers take the following testing actions in alignment with the recently published CISA Advisory (AA25-093A) which highlights the ongoing and evolving threat of fast flux techniques. These techniques are ...
AttackIQ

[CISA AA25-050A] #StopRansomware: Ghost (Cring) Ransomware

| | #StopRansomware, Attack Graph, Broad-Based Attacks, cisa, CISA Alert, Cring, Ghost, Indicators of Compromise (IOCs), Ransomware, TTPs
AttackIQ has released a new attack graph in response to the CISA Advisory (AA25-050A) published on February 19, 2025, which disseminates known Ghost Ransomware Tactics, Techniques, and Procedures (TTPs) and Indicators of ...
AttackIQ
A close up of a patient monitor screen with a heart beat

CISA/FDA Warn: Chinese Patient Monitors Have BAD Bugs

| | cisa, CISA Advisories, CISA Advisory, CISA Alert, CISA cybersecurity advisory, CISA Report, CISA Research, Contec, CVE-2024-12248, CVE-2025-0626, CVE-2025-0683, Cyber Threat on Healthcare, cyberattacks in healthcare, Cybersecurity and Infrastructure Agency, Cybersecurity and Infrastructure Security Agency, Cybersecurity for Healthcare, cybersecurity in healthcare, Epsimed, FDA, FDA guidance, fda medical device cybersecurity, Food and Drug Administration, health care, Health Care Security, healthcare, Healthcare & Life Sciences, Healthcare company, Healthcare Compliance, SB Blogwatch, USFDA
China crisis? Stop using this healthcare equipment, say Cybersecurity & Infrastructure Security Agency and Food & Drug Administration ...
Security Boulevard

Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group

| | #StopRansomware, adversary emulation, BianLian, CISA Alert, Construction, Energy, Professional Services, Ransomware, Resources & Utilities
AttackIQ has released an updated attack graph in response to the recently revised CISA Advisory (AA23-136A) that disseminates known BianLian ransomware group Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) ...
AttackIQ

Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group

| | #StopRansomware, adversary emulation, BianLian, CISA Alert, Construction, Energy, Professional Services, Ransomware, Resources & Utilities
AttackIQ has released an updated attack graph in response to the recently revised CISA Advisory (AA23-136A) that disseminates known BianLian ransomware group Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) ...
AttackIQ

Response to CISA Advisory (AA24-326A): Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization

| | adversary emulation, CISA Alert, Critical Infrastructure, cyber resilience, Cybersecurity Advisory (CSA), Red Team Assessment (RTA), Red Teaming
In response to the recently published CISA Advisory (AA24-326A) which highlights the CISA Red Team's simulation of real-world malicious cyber operations, AttackIQ has provided actionable recommendations to help organizations emulate these attacks ...
AttackIQ

Response to CISA Advisory (AA24-317A): 2023 Top Routinely Exploited Vulnerabilities

| | adversary emulation, Broad-Based Attacks, CISA Alert
In response to the recently published CISA Advisory (AA24-317A) that disseminates the top routinely exploited vulnerabilities from 2023, AttackIQ has proposed a multitude of recommendations that customers can take to emulate these ...
AttackIQ
Load more