Security through data

MAIN

  • Home
  • Alerts
  • Blog
  • Events
  • Incidents
  • Tutorials

FEATURED

  • AI
  • Privacy
  • Cryptocurrency
  • Blockchain
  • IoT
  • Deep Web
  • Threat Actors
  • Social Engineering
  • Phishing
  • Malware
  • E-Commerce
  • Deepfake
  • Quantum Computing

COMPANY

  • About us
  • Advertise
  • Legal & Policy
Cybermaterial
  • CATEGORIES
    • Cyber101
      • Definition
      • Quote
    • Document
      • Cheat Sheet
      • Paper
      • Report
    • Education
      • Certification
      • Course
    • Entertainment
      • Documentary
      • Game
      • Meme
      • Movie
      • TV Show
    • Learning
      • Book
      • Lexicon
      • Podcasts
      • Tutorials
    • Tool
      • Hardware
      • Software
No Result
View All Result
Contact Us
Cybermaterial
  • CATEGORIES
    • Cyber101
      • Definition
      • Quote
    • Document
      • Cheat Sheet
      • Paper
      • Report
    • Education
      • Certification
      • Course
    • Entertainment
      • Documentary
      • Game
      • Meme
      • Movie
      • TV Show
    • Learning
      • Book
      • Lexicon
      • Podcasts
      • Tutorials
    • Tool
      • Hardware
      • Software
No Result
View All Result
Contact Us
Cybermaterial
No Result
View All Result

REPORT: Advanced Persistent Threat Actors Targeting U.S. Think Tanks

CISA

in Document, Report
1 min read

Callout Box: This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques.

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have observed persistent continued cyber intrusions by advanced persistent threat (APT) actors targeting U.S. think tanks. This malicious activity is often, but not exclusively, directed at individuals and organizations that focus on international affairs or national security policy.

The following guidance may assist U.S. think tanks in developing network defense procedures to prevent or rapidly detect these attacks. APT actors have relied on multiple avenues for initial access. These have included low-effort capabilities such as spearphishing emails and third-party message services directed at both corporate and personal accounts, as well as exploiting vulnerable web-facing devices and remote connection capabilities. Increased telework during the COVID-19 pandemic has expanded workforce reliance on remote connectivity, affording malicious actors more opportunities to exploit those connections and to blend in with increased traffic. Attackers may leverage virtual private networks (VPNs) and other remote work tools to gain initial access or persistence on a victim’s network. When successful, these low-effort, high-reward approaches allow threat actors to steal sensitive information, acquire user credentials, and gain persistent access to victim networks.

READ FULL REPORT

Tags: CISAReportThreat ActorsThreat Actors Documents
8
VIEWS

More Reports

A Look into the Global “Drive-By Cryptocurency Mining” Phenomenon
Report

A Look into the Global “Drive-By Cryptocurency Mining” Phenomenon

April 16, 2021

Differing from traditional money, cryptocurrencies are not issued by a central bank or authority. Instead, this digital asset can be...

THE WHO, WHAT, WHY AND HOW OF DDoS ATTACKS: A GUIDE FOR IT PROS
Report

THE WHO, WHAT, WHY AND HOW OF DDoS ATTACKS: A GUIDE FOR IT PROS

April 15, 2021

The IT industry has seen a major increase of Distributed Denial of Service (DDoS) attacks over the past several years.

The Essential OAuth Primer: Understanding OAuth for Securing Cloud APIs
Report

The Essential OAuth Primer: Understanding OAuth for Securing Cloud APIs

April 14, 2021

A key technical underpinning of the Cloud is the Application Programming Interface (API). APIs provide consistent methods for outside entities...

MORE

Stat

79% of Fortune 500 domains can still be spoofed, because they either have no DMARC…

January 22, 2021
Quote

“The regulatory issues have been around for a long time…”

March 3, 2021
Alerts

Microsoft issued fixes for 56 flaws, including a critical vulnerability that’s known to be actively exploited in the wild

February 11, 2021
Software

Knockpy

April 15, 2021
ADVERTISEMENT

Tags

Books Cybersecurity Hackers Malware Memes Movies Quantum Computing Report Software Word of the day

© 2021 | CyberMaterial | All rights reserved.

SECURITY THROUGH DATA

No Result
View All Result
  • Home
  • Alerts
  • Cyber Incidents
  • Blog
  • Events
  • Tutorials
  • Featured
    • AI
    • Privacy
    • Cryptocurrency
    • Blockchain
    • IoT
    • Deep Web
    • Threat Actors
    • Social Engineering
    • Deepfake
    • E-Commerce
    • Malware
    • Phishing
    • Quantum Computing

© 2020 CyberMaterial - Cyber Decoded.

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.