[CDP-development] IOCs and TTPs Associated With Compromises Targeting Identified Distributor of Government, Law Enforcement, and Non-Profit Organization Equipment - TLP: AMBER

Masse, Theresa theresa.masse at cisa.dhs.gov
Tue May 2 13:26:13 PDT 2023 

FYSA

The Federal Bureau of Investigation (FBI) is releasing the attached FLASH to disseminate known IOCs and TTPs associated with system compromises identified as recently as 10 April 2023. The compromises appear to target the products of a distributor of equipment to government, law enforcement, and non-profit organizations. These products include, but are not limited to, License Plate Reader (LPR) Communication Boxes, Emergency Operations Center (EOC) video wall systems, and general access terminals. The malicious files on these systems can facilitate keylogging, cryptocurrency mining, exfiltration of data, and/or remote access capabilities.

The FBI encourages organizations to implement the recommendations in the Mitigations section of the attached FLASH to reduce the likelihood and impact of the identified compromise.


Theresa A. Masse
Cybersecurity State Coordinator/Advisor, Region 10 (Oregon)
Cybersecurity and Infrastructure Security Agency
Department of Homeland Security
Phone: (503) 930-5671
Email: theresa.masse at cisa.dhs.gov<mailto:theresa.masse at cisa.dhs.gov>

[cid:image007.png at 01D97CF9.9B25D8B0]


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20230502/2f1e4bc2/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image007.png
Type: image/png
Size: 16152 bytes
Desc: image007.png
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20230502/2f1e4bc2/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: FLASH-TC-000171-TT_TLP_AMBER.pdf
Type: application/pdf
Size: 1246032 bytes
Desc: FLASH-TC-000171-TT_TLP_AMBER.pdf
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20230502/2f1e4bc2/attachment-0001.pdf>

More information about the CDP-development mailing list