Cybersecurity Government Intelligence Reports

The American Hospital Association (AHA) Cybersecurity and Risk Advisory Service share cybersecurity government intelligence reports that are vital to the security of hospitals and health systems.

APT5 has demonstrated capabilities against Citrix® Application Delivery Controller™ (ADC™) deployments (“Citrix ADCs”).
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), Australian Signals Directorate’s (ASD’s) Australian Cyber Security Centre (ACSC), Canadian Cyber Security Centre (CCCS), and New Zealand’s National Cyber Security…
The Federal Bureau of Investigation (FBI) is releasing this FLASH to disseminate indicators of compromise (IOCs) associated with malicious cyber activities targeting the FBI’s computer network between 1 April 2024 and 30 June 2024.
Godzilla webshell is a Chinese-language backdoor created by an individual who goes by the online handle BeichenDream.
The "Miracle Exploit" refers to a set of critical vulnerabilities in Oracle products, primarily affecting Oracle Fusion Middleware and its ADF Faces framework, which is used to build web interfaces for Java EE applications.
OverviewAs outlined in CISA’s Secure by Design initiative, software manufacturers should ensure that security is a core consideration from the onset of software development. This voluntary guidance provides an overview of product security bad practices that are deemed exceptionally risky,…
(U//FOUO) Scope(U//FOUO) This Joint Intelligence Bulletin (JIB) highlights the potential for violent extremists and hate crime perpetrators to take action in the United States in response to the one-year anniversary of the HAMAS attacks on Israel on 7 October 2023.a,b We advise federal, state,…
The continuity of vital services relies on critical infrastructure organizations ensuring the cyber security and safety of their OT.
Malvertising is a cyberattack method where legitimate advertising networks are infiltrated with malicious advertisements.
The Federal Bureau of Investigation, Cybersecurity and Infrastructure Security Agency, and National Security Agency assess that cyber actors affiliated with the Russian General Staff Main Intelligence Directorate 161st Specialist Training Center (Unit 29155) are responsible for computer network…