Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Cyber National Mission Force (CNMF) identified the presence of indicators of compromise (IOCs) at an Aeronautical Sector organization as early as January 2023. Analysts confirmed that nation-state advanced persistent threat (APT) actors exploited CVE-2022-47966 to gain unauthorized access to a public-facing

Related Keywords

Portugal ,Portuguese ,Zoho Manageengine ,Zoho Manageengine Servicedesk ,Connectwise Screenconnect ,Metasploit Meterpreter ,Network Security Through Segmentation ,Resource Development ,Windows Service ,Bureau Of Investigation ,Segment Networks ,Network Infrastructure Security ,Group Policy Object ,Infrastructure Security Agency ,Security Baselines In Your Organization ,Microsoft Software Restriction Policy Or Applocker ,Cyber National Mission Force ,Server Software Component ,System Network Connections Discovery ,Security Authority Subsystem Service ,Masquerade Task Or Service ,Group Policy Object On Windows ,National Security Agency ,Remote Access Software ,Network Address Translation ,Service File Name ,Network Service Discovery ,Service Name ,National Institute Of Standards ,Microsoft ,Cyber Hygiene Services ,Remote Services ,Lateral Movement ,Federal Bureau ,Aeronautical Sector ,Zoho Manageengine Servicedesk Plus ,Cybersecurity Advisory ,Malware Analysis Report ,Access Vector ,Transport Layer Security ,Transmission Control Protocol ,Coordinated Universal Time ,Resource Identifier ,Local Security Authority Subsystem Service ,Active Directory ,Sysinternals Suite ,Remote Desktop Protocol ,Apache Log ,Outlook Web Application ,Active Server Pages Extended ,File Name ,Domain Name System ,Observed Tools Used ,Windows Registry Hive ,Remote Desktop Session Host ,Scripting Interpreter ,Software Component ,Modify System Process ,Clear Windows Event ,Masquerade Task ,Masquerade File ,Trust Controls ,Hidden Files ,Security Account ,Remote Desktop ,Layer Protocol ,Cross Sector Cybersecurity Performance Goals ,National Institute ,Sector Cybersecurity Performance Goals ,Multiple Zoho Manageengine ,Servicedesk Plus ,Apache Santuario ,Cyber Hygiene ,Remediate Vulnerabilities ,File Transfer Protocol ,Internet Protocol ,Deploy Application Aware ,Local Administrator Password Solution ,Using Security Baselines ,Securing Remote Access Software ,Microsoft Software Restriction Policy ,Best Practices ,Securing Active ,Infrastructure Security ,