CVE-2021-40539, rated critical by the Common Vulnerability Scoring System (CVSS), is an authentication bypass vulnerability affecting representational state transfer (REST) application programming interface (API) URLs that could enable remote code execution. The FBI, CISA, and CGCYBER assess that advanced persistent threat (APT) cyber actors are likely among those exploiting the vulnerability. The exploitation of ManageEngine…
The Conti ransomware is a RaaS model that differentiates from the standard affiliate-based model. It’s likely that the developers of Conti pay the deployers of this ransomware a wage rather than a percentage of the proceeds, and receive shares of the proceeds from successful attacks. >>MORE
Cyber Threats to U.S. Water and Wastewater Systems WWS facilities may be vulnerable to the following common tactics, techniques, and procedures (TTPs) used by threat actors to compromise IT and OT networks, systems, and devices. >>MORE
BlackMatter is a ransomware-as-a-service tool that has been seen in July 2021. It is a possible rebrand of DarkSide, a RaaS which was active from September 2020 through May 2021. BlackMatter actors have attacked numerous U.S.-based organizations and have demanded ransom payments ranging from $80,000 to $160,000. More Info