The U.S. Cybersecurity and Infrastructure Agency has released a new tool designed to help IT and security professionals detect indicators of compromise associated with the SolarWinds and Active Directory/Microsoft 365 Compromise. The tool, CISA Hunt and Incident Response Program (CHIRP), scans for signs of compromise from an advanced persistent threat actor within an on-premises environment. […]
The Cybersecurity and Infrastructure Agency, the U.S. agency tasked with shoring up the country’s cyber defenses, is beginning a coordinated effort to encourage public and private sector organizations to mitigate the threat of ransomware. The Reduce the Risk of Ransomware Campaign aims to help companies implement best practices, tools and resources to help prevent ransomware […]
U.S. cybersecurity officials are warning K-12 educators of an uptick in cyberattacks designed to exploit and disrupt distance learning during the COVID-19 pandemic. As schools everywhere continue to rely on critical IT services to support distance learning via videoconferencing and collaboration tools, cybercriminals are taking notice. Bad actors are targeting schools with ransomware, data theft […]
A hacking group backed by a foreign government is conducting a global attack through the software supply chain and widely-used IT infrastructure management software from SolarWinds, according to cybersecurity company FireEye. The attack method appears to be linked to a compromise of FireEye’s own systems in a breach reported last week in which attackers stole […]
U.S. federal authorities are warning healthcare systems of a spike in ransomware attacks against hospitals and healthcare systems The joint warning from the U.S. Cybersecurity and Infrastructure Agency, FBI and Department of Health and Human Services says malicious cyber actors are targeting the healthcare sector with Trickbot malware, leading to ransomware attacks, data theft and […]
The U.S. Cybersecurity and Infrastructure Security Agency has issued an emergency directive to federal agencies demanding that they apply an August update to Windows Server before Tuesday to address a critical vulnerability that could allow an attacker to compromise all Active Directory identity services. The vulnerability – CVE-2020-1472 – is an elevation of privilege vulnerability […]
A new advisory from the U.S. Cybersecurity and Infrastructure Security Agency warns of Chinese government-affiliated cyber threat actors using publicly available and open-source information to leverage unpatched software vulnerabilities to attack U.S. government agencies. According to the warning, hacking groups affiliated with the Chinese Ministry of State Security for the last 12 months have been […]
U.S. cybersecurity officials are warning of a three-month-old Windows 10 vulnerability and proof-of-concept code that could allow a bad actor to execute code on a compromised machine. Malicious cyber actors are targeting unpatched systems with the new proof of concept code, the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) says in […]
FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets
View all Guides
Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.
Enter Today!