ACSC Releases Advisory on Cyber Campaign using Copy-Paste Compromises

Original release date: June 22, 2020

The Australian Cyber Security Centre (ACSC) has released an advisory regarding an ongoing cyber campaign involving “copy-paste compromises” targeting Australian government and commercial networks. According to the advisory, a sophisticated malicious cyber actor is carrying out the campaign using open-source code that exploits known remote code execution vulnerabilities and spearphishing attacks.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the tactics, techniques, and procedures and mitigations identified in ASCS Advisory 2020-008 as well as:

CISA Security Tip: Questions Every CEO Should Ask About Cyber Risks
CISA Security Tip: Understanding Patches and Software Updates
CISA Security Tip: Supplementing Passwords

This product is provided subject to this Notification and this Privacy & Use policy.

Source link

admin

Next Adobe Releases Security Updates for Magento »

Previous « Drupal Releases Security Updates

Microsoft Windows JPEG component buffer overflow

Systems Affected This vulnerability affects the following Microsoft Windows operating systems by default: Microsoft Windows…

12 hours ago

Opportunistic Pro-Russia Hacktivists Attack US and Global Critical Infrastructure

CISA, in partnership with Federal Bureau of Investigation, the National Security Agency, Department of Energy,…

2 days ago

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence…

3 days ago

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence…

4 days ago

CISA, Australia, and Partners Author Joint Guidance on Securely Integrating Artificial Intelligence in Operational Technology

CISA and the Australian Signals Directorate’s Australian Cyber Security Centre, in collaboration with federal and international…

5 days ago

PRC State-Sponsored Actors Use BRICKSTORM Malware Across Public Sector and Information Technology Systems

The Cybersecurity and Infrastructure Security Agency (CISA) is aware of ongoing intrusions by People’s Republic…

6 days ago

This website uses cookies.

ACSC Releases Advisory on Cyber Campaign using Copy-Paste Compromises

Recent Posts

Microsoft Windows JPEG component buffer overflow

Opportunistic Pro-Russia Hacktivists Attack US and Global Critical Infrastructure

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA, Australia, and Partners Author Joint Guidance on Securely Integrating Artificial Intelligence in Operational Technology

PRC State-Sponsored Actors Use BRICKSTORM Malware Across Public Sector and Information Technology Systems