Click here to download all references as Bib-File.
| 2021-07-04 ⋅ CISA ⋅ CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack REvil REvil |
| 2021-06-19 ⋅ CISA ⋅ Alert (AA21-200A): Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department APT40 |
| 2021-05-28 ⋅ CISA ⋅ Alert (AA21-148A): Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs Cobalt Strike |
| 2021-05-28 ⋅ CISA ⋅ Malware Analysis Report (AR21-148A): Cobalt Strike Beacon Cobalt Strike |
| 2021-05-14 ⋅ CISA ⋅ Analysis Report (AR21-134A): Eviction Guidance for Networks Affected by the SolarWinds and Active Directory/M365 Compromise SUNBURST |
| 2021-05-11 ⋅ CISA ⋅ Alert (AA21-131A) DarkSide Ransomware: Best Practices for Preventing Business Disruption from Ransomware Attacks DarkSide |
| 2021-04-22 ⋅ CISA ⋅ AR21-112A: CISA Identifies SUPERNOVA Malware During Incident Response SUPERNOVA |
| 2021-04-20 ⋅ CISA ⋅ Alert (AA21-110A): Exploitation of Pulse Connect Secure Vulnerabilities |
| 2021-04-15 ⋅ CISA ⋅ Malware Analysis Report (AR21-105A): SUNSHUTTLE GoldMax |
| 2021-04-12 ⋅ CISA ⋅ Analysis Report (AR21-102B): DearCry Ransomware dearcry |
| 2021-04-06 ⋅ CISA ⋅ Malicious Cyber Activity Targeting Critical SAP Applications |
| 2021-04 ⋅ CISA ⋅ Defending Against Software Supply Chain Attacks |
| 2021-03-18 ⋅ CISA ⋅ Alert (AA21-077A): Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool SUNBURST |
| 2021-03-17 ⋅ CISA ⋅ SolarWinds and Active Directory/M365 Compromise: Detecting Advanced Persistent Threat Activity from Known Tactics, Techniques, and Procedures (Dead Link) SUNBURST |
| 2021-03-17 ⋅ CISA ⋅ Alert (AA21-076A): TrickBot Malware TrickBot |
| 2021-03-10 ⋅ US-CERT ⋅ Remediating Networks Affected by the SolarWinds and Active Directory/M365 Compromise SUNBURST |
| 2021-03-03 ⋅ CISA ⋅ Mitigate Microsoft Exchange On-Premises Product Vulnerabilities |
| 2021-02-24 ⋅ US-CERT ⋅ Alert (AA21-055A): Exploitation of Accellion File Transfer Appliance |
| 2021-02-24 ⋅ US-CERT ⋅ Malware Analysis Report (AR21-055A): Accellion FTA DEWMODE |
| 2021-02-17 ⋅ US-CERT ⋅ Malware Analysis Report (AR21-048E): AppleJeus: CoinGoTrade AppleJeus POOLRAT AppleJeus |