Written by Carol Hildebrand, Senior Writer, Security, NETSCOUT The COVID-19 pandemic handed some Herculean tasks to many enterprise IT and cybersecurity teams. First, IT had to adjust architectures and practices to support a massive, unplanned shift to remote work for those who were able to work at home. Many companies…
On Friday, 2 July, CTA members became aware of a ransomware campaign targeting Kaseya’s VSA product. VSA is used by Managed Service Providers (MSPs) to monitor and manage information technology for their clients, provide automation, and assist with software patch management. In this incident, an affiliate of REvil leveraged a…
Written by: Yongjia Chen, Dathan Duplichen, Andrew Shu, Anna Nguyen Yip Although the ransomware threat currently gets the most attention, botnets remain a significant problem in the digital ecosystem. As part of our capstone project in the Master’s in International Policy degree program at Stanford’s Freeman Spogli Institute for International…
Written by Jon-Louis Heimerl, CISSP, Sr. Manager, Threat Intelligence Communications, NTT Ltd. As 2020 drew to a close, NTT Ltd worked on our annual Global Threat Intelligence Report (GTIR). The data showed some interesting results, so I asked Michael Daniel what kind of impact he thought COVID-19 was having on…
The Cyber Threat Alliance (CTA) released our first threat assessment focusing on the 2020 Summer Olympics in Tokyo way back in February 2020. Around the release date, we were seeing stories of a novel coronavirus beginning to spread. Some of us were starting to get concerned about it here in…
This week, the Ransomware Task Force released its report on combating ransomware. The RTF, sponsored by the Institute for Security & Technology, is made up of more than 50 expert volunteers from software companies, cybersecurity vendors, government agencies, non-profits, and academic institutions. The Task Force’s report is timely and its…
The Cyber Threat Alliance (CTA) Sharing Model relies on our organization’s status as a trusted environment for all of our private-sector members, as well as public sector and civil society partners. That trust also allows us to do so much more. The fact that all of CTA’s private-sector…
During recent weeks, cybersecurity providers, businesses, governments, and other organizations have been responding to the publicization of four zero-day vulnerabilities affecting Microsoft Exchange Servers (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065). On March 2, Microsoft released emergency, out-of-band security updates to address these vulnerabilities, which affect a…
This post was originally authored by Josh Kenway. To say the least, 2020 was a turbulent year. While certain governments responded to the spread of COVID-19 more effectively than others, the pandemic’s disruptive impact on human society is sure to linger well into this new decade. The paramount importance of…
Despite the general turbulence unleashed by the COVID-19 pandemic, CTA has continued over the last year to mature as an organization in terms of both our threat intelligence sharing and membership growth. Of course, these two aspects are closely intertwined. Because our membership rules require all CTA members to share,…