19 Apr 2021

NSA: 5 Security Bugs Under Active Nation-State Cyberattack

The National Security Agency (NSA) has released an alert warning that five vulnerabilities are being actively targeted by nation-state actors. The bugs affect VPN solutions, collaboration-suite software, and virtualization technologies in widely deployed platforms from Citrix, Fortinet, Pulse Secure, Synacor, and VMware. According to the NSA, the goal of the

Read More
23 Feb 2021

Chinese-Affiliated APT31 Cloned & Used NSA Hacking Tool

According to recent Check Point Security Research, Chinese threat actor group APT31 allegedly cloned and re-used a National Security Agency hacking tool years before Microsoft patched the severe vulnerability that it targeted. The tool was a Windows-based program that was referred to as “Jian” until the Microsoft vulnerability was patched

Read More
02 Feb 2021

SolarWinds Hack Prompts Congress to Put NSA in Encryption Hot Seat

Congress has called on the National Security Agency to be more transparent regarding a cyberattack that occurred in 2015 against Juniper Networks. The Juniper Networks supply-chain breach attack bears similarities to the recent SolarWinds espionage campaign, hence the emphasis on acquiring more information about it. Last week, SolarWinds sent a

Read More
27 Jan 2021

W.V. Woman Gets 11 Years for Trying to Hawk NSA Docs to Russia, Kidnapping Daughter

Elizabeth Jo Shirley, a 47-year-old West Virginia resident has been sentenced to over 11 years in federal prison after she kidnapped her daughter, fled to Mexico, and attempted to sell classified NSA information stolen from her place of work to Russia. Shirley pleaded guilty to all charges, including unlawfully retaining

Read More
18 Jan 2021

NSA Appoints Rob Joyce as Cyber Director

US cybersecurity official Rob Joyce has been named the new leader of the National Security Agency’s (NSA) Cybersecurity Directorate. Joyce was previously the NSA’s top representative in the UK. Joyce will replace Anne Neuberger, who was recently appointed Deputy National Security Advisor for Cyber and Emerging Technology on the National

Read More
15 Jan 2021

NSA Recommends Smart Use of DNS Resolvers

From Dark Reading: The National Security Agency recommended that enterprises use only their designated DNS resolver in DNS traffic and avoid third-party resolvers. Domain Name System technology, or DNS over HTTPS, DoH, can be abused by attackers. Companies using only their designated DNS server is the safest route and all

Read More
08 Dec 2020

The NSA Warns That Russia Is Attacking Remote Work Platforms

The COVID-19 pandemic has created a massive movement towards working from home, inadvertently also creating more opportunities for hackers. The National Security Agency (NSA) released an advisory warning that Russian-state sponsored hackers have been actively attacking a vulnerability in remote-work platforms developed by VMware. The agency also released a security

Read More
04 Sep 2020

NSA Mass Surveillance Program Illegal, U.S. Court Rules

Although the NSA has maintained that its mass surveillance program was efficient in stopping terrorist attacks, a new US court ruling found that the program may have been illegal, even unconstitutional. The mass surveillance program perpetrated by the NSA was exposed in 2013 by a former contractor and whistleblower Edward

Read More
14 Aug 2020

NSA, FBI Warn of Linux Malware Used in Espionage Attacks

Two government agencies, the NSA and the FBI, have warned about a new malware variant called Drovorub that intentionally targets Linux systems and was constructed by the Russian military for use in cyber-espionage operations. Drovorub boasts a variety of espionage capabilities, including file stealing and remote code execution. According to

Read More
27 Jul 2020

NSA Urgently Warns on Industrial Cyberattacks, Triconex Critical Bug

The US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint advisory that foreign adversaries could be actively targeting US critical infrastructure across the nation. The alert states that infrastructure such as power plants, factories, oil, and gas refineries could be among the

Read More