Search Results
The default setting for search results displays All Content. If you prefer to see recent content only, please adjust the date filter.
Filter your results:
Types
Topics
27 Results Found
HC3 TLP White Threat Briefing: Log4J Vulnerabilities and the Health Sector January 20, 2022
Log4J is a Java-based, ubiquitous logging tool now known to have multiple
vulnerabilities, including multiple remote code execution flaws that can provide an
attacker total control of a system.
HC3 TLP White: Analyst Note: Mespinoza/GoldBurlap/CYBORG SPIDER, January 6, 2022
Mespinioza (also known as GOLD BURLAP and CYBORG SPIDER) is a cybercriminal group who operates PYSA ransomware, among other cyber weapons, and have been active since 2018.
Tools for Detection of Compromise of Microsoft Exchange Server Vulnerabilities
Executive Summary
Microsoft released patches for four Exchange Server zero-day vulnerabilities on March 2, 2021.
HC3 TLP Analyst Note: Microsoft Exchange Server Zero-Days Actively Exploited March 3, 2021
Microsoft released patches for four Exchange Server zero-day vulnerabilities that are being actively exploited by sophisticated threat actors who have a history of targeting healthcare organizations with cyberattacks.
HC3 TLP White Analyst Note: Accellion File Transfer Appliance Compromise
Accellion, a managed service provider focused on collaboration and secure file sharing, was recently compromised in an attack which has impacted their customers.
HC3 Analyst Note TLP White - TCP/IP Stack Vulnerabilities Possibly Affect Healthcare Devices
On December 8, 2020, a report titled Amnesia:33 developed by Forescout disclosed multiple zero-day vulnerabilities in the TCP/IP stacks impacting numerous Operational Technology (OT), Internet of Things (IoT), Building Automation Systems, and Information Technology (IT) devices.
HC3 Analyst Note TLP White - CLOP Poses Ongoing Risk to HPH Organizations November 16, 2020
CLOP, a ransomware variant associated with the FIN11 threat actor group and the double extortion tactic, has previously targeted several U.S. healthcare and public health (HPH) organizations.
HC3 Analyst Note TIP White - FIN11 Cybercrime Group Moves into Ransomware and Extortion
Mandiant recently elevated a tracked threat cluster to the named threat group FIN11. Beginning in 2016 with phishing campaigns, this group has moved into double extortion ransomware operations utilizing CLOP ransomware.
HC3 Analyst Note TLP White: Maldocs used to Deliver Information Stealer
In August 2020, security researchers identified a malicious email campaign impersonating a US hospital that was observed delivering a variety of information stealing trojans, including AgentTesla, Formbook, Matiex, and njRatAzorult.
HC3 Analyst Note TLP White: Maldocs used to Deliver Information Stealer
In August 2020, security researchers identified a malicious email campaign impersonating a US hospital that was observed delivering a variety of information stealing trojans, including AgentTesla, Formbook, Matiex, and njRatAzorult.