FBI, CISA Warn of Serious Cyber Threats

May 14, 2020

The FBI and CISA warned yesterday that China and its proxies have been observed attempting to identify and illicitly obtain valuable intellectual property and public health data related to vaccines, treatments and testing from networks and personnel affiliated with COVID-19-related research, which could jeopardize the delivery of secure, effective and efficient treatment options.

The agencies issued alerts providing very specific technical details on the tools and infrastructure used by cyber actors of the North Korean government to conduct cyberattacks under a campaign collectively referred to as "Hidden Cobra," as well as the top 10 most exploited vulnerabilities by state and other cyber actors from 2016 to 2019. According to the analysis, malicious cyber actors most often exploited vulnerabilities in Microsoft's Object Linking and Embedding technology and the ubiquitous Web framework known as Apache Struts.