Security Center - Fraud Alerts

• Cyber Criminal Services Target End-of-Life Routers to Launch Attacks and Hide Their Activities
• Primary Mitigations to Reduce Cyber Threats to Operational Technology
• Phishing Domains Associated with LabHost PhaaS Platform Users
• BADBAZAAR and MOONSHINE: Spyware Targeting Uyghur, Taiwanese, and Tibetan Groups and Civil Society Actors
• Fast Flux: A National Security Threat
• #StopRansomware: Medusa Ransomware
• #StopRansomware: Ghost (Cring) Ransomware
• Malicious Cyber Actors Use Buffer Overflow Vulnerabilities to Compromise Software
• Guidance on digital forensics and protective monitoring specifications for producers of network devices and appliances
• Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
• Product Security Bad Practice
• Secure by Demand: Priority Considerations for Operational Technology Owners and Operators when Selecting Digital Products
• HiatusRAT Actors Targeting Web Cameras and DVRs
• Enhanced Visibility and Hardening Guidance for Communications Infrastructure
• #StopRansomware: BianLian Data Extortion Group
• 2023 Top Routinely Exploited Vulnerabilities
• Easy Access to Information for Conducting Fraudulent Emergency Data Requests Impacts US-Based Companies and Law Enforcement Agencies
• New Tradecraft of Iranian Cyber Group Aria Sepehr Ayandehsazan aka Emennet Pasargad
• Update on SVR Cyber Operations and Vulnerability Exploitation
• Principles of Operational Technology Cyber Security (Quick Reference Guide)