FBI TLP Alert

Apr 2, 2021
In March 2021 the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) observed Advanced Persistent Threat (APT) actors scanning devices on ports 4443, 8443, and 10443 for CVE-2018-13379, and enumerated devices for CVE-2020-12812 and CVE-2019-5591.…
Mar 31, 2021
On 14 April 2020, the Nemty ransomware actors announced a shutdown of Nemty’s Ransomware-as-a-Service operations. At the same time, Nefilim, which first appeared in March 2020, launched a public leaking website called corpleaks.net.
Mar 26, 2021
Mamba ransomware has been deployed against local governments, public transportation agencies, legal services, technology services, industrial, commercial, manufacturing, and construction businesses.
Mar 26, 2021
Mamba ransomware has been deployed against local governments, public transportation agencies, legal services, technology services, industrial, commercial, manufacturing, and construction businesses.
Mar 23, 2021
Mamba ransomware has been deployed against local governments, public transportation agencies, legal services, technology services, industrial, commercial, manufacturing, and construction businesses.
Mar 17, 2021
From 2018 through 2020, the FBI observed increases in business email compromise (BEC) actors targeting state, local, tribal, and territorial (SLTT) government entities for financial gain due to vulnerability exploitation and transparency requirements.
Mar 16, 2021
FBI reporting has indicated a recent increase in PYSA ransomware targeting education institutions in 12 US states and the United Kingdom. PYSA, also known as Mespinoza, is a malware capable of exfiltrating data and encrypting users’ critical files and data stored on their systems. The…
Mar 15, 2021
At A Glance The FBI prepared this Private Industry Notification (PIN) as a follow up to PIN 20200521-001, “Criminals and Nation-State Cyber Actors Conducting Widespread Pursuit of US Biological and COVID-19 Research,” released in May 2020. Nation-state adversaries have engaged in, and will…
Mar 15, 2021
The FBI to date is not aware of any specific cyber threat against the 20 January 2021 Presidential Inauguration but encourages partners to remain vigilant and maintain best practices in their network and digital environments.
Mar 13, 2021
The FBI has identified various phishing emails and infrastructure used by financially motivated cyber criminal group FIN6 in furtherance of large-scale point-of-sale (POS) intrusions.