All archived alerts and advisories Title TypeAdvisoryAlert StatusCRITICALHIGHMEDIUMLOW AudienceIndividuals & familiesSmall & medium businessesOrganisations & Critical InfrastructureGovernment Sort by Sort byDate updated (new to old)Date updated (old to new)Title (A-Z)Title (Z-A) Items per page 61218243036424854606672788490200 22 May 2020 Alert rating: High Active exploitation of vulnerability in Microsoft Internet Information Services The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware that sophisticated actors are actively exploiting a deserialisation vulnerability existing in all versions of Microsoft’s Internet Information Services (IIS) using the .NET framework (.NET). The vulnerability exploits the service’s VIEWSTATE parameter to allow for remote code execution by unauthorised users. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 22 May 2020 Alert rating: High COVID-19 malicious cyber activity Malicious cyber actors are actively targeting individuals and Australian organisations with COVID-19 related scams and phishing emails. These incidents are likely to increase in frequency and severity over the coming weeks and months. This is due, in part, to the ease in which existing scam emails and texts can be modified with a COVID-19 theme. Audience focus: Individuals & families Small & medium businesses Organisations & Critical Infrastructure Government 22 May 2020 Advisory Advisory 2020-004: Remote code execution vulnerability being actively exploited in vulnerable versions of Telerik UI by sophisticated actors This advisory is focused around the targeting of CVE-2019-18935 but has significant overlap to the previously released ACSC 2019-126 advisory. Audience focus: Organisations & Critical Infrastructure Government 22 May 2020 Advisory 2020-006 Detecting and mitigating exploitation of vulnerability in Microsoft Internet Information Services This advisory provides indicators of the activity the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has observed and details proactive advice on detecting and mitigating potential exploitation of this vulnerability in Microsoft Internet Information Services. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 20 May 2020 Alert rating: Medium Summary of Tradecraft Trends for 2019-20 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) investigated and responded to numerous cyber security incidents during 2019 and 2020 so far. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 20 May 2020 Advisory Summary of Tactics, Techniques and Procedures Used to Target Australian Networks This advisory provides information on methods to detect many of the TTPs listed. Partners are strongly encouraged to review their environments for the presence of the exploited vulnerabilities and provided TTPs. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government Pagination Previous page ‹‹ Page 19 Next page ›› Alerts and Advisories View our recent alerts and advisories Alerts and Advisories Advice, guidance and publications Reports and statistics News Programs Glossary
