Threats

Note: Most of my rss feeds on this page are currently broken. Sorry about that. Please consider the “Threats” section under construction for now.

Department of State

The Dept of State has several threat rss feeds, but they aren’t always up.

DHS

Threat information from the Department of Homeland Security (DHS), including the National Terrorism Advisory System and Cybersecurity alerts.

National Terrorism Advisory System (NTAS) Alerts

    Feed has no items.

Cybersecurity

  • AA21-287A: Ongoing Cyber Threats to U.S. Water and Wastewater Systems
    by CISA on October 14, 2021 at 6:00 pm

    Original release date: October 14, 2021SummaryImmediate Actions WWS Facilities Can Take Now to Protect Against Malicious Cyber Activity • Do not click on suspicious links.• If you use RDP, secure and monitor it. • Use strong passwords. • Use multi-factor authentication. Note: This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts between the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Agency (CISA), the Environmental Protection Agency (EPA), and the National Security Agency (NSA) to highlight ongoing malicious cyber activity—by both known and unknown actors—targeting the information technology (IT) and operational technology (OT) networks, systems, and devices of U.S. Water and Wastewater Systems (WWS) Sector facilities. This […]

  • AA21-265A: Conti Ransomware
    by CISA on September 22, 2021 at 5:00 pm

    Original release date: September 22, 2021 | Last revised: September 29, 2021SummaryImmediate Actions You Can Take Now to Protect Against Conti Ransomware • Use multi-factor authentication. • Segment and segregate networks and functions. • Update your operating system and software. Note: This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have observed the increased use of Conti ransomware in more than 400 attacks on U.S. and international organizations. (See FBI Flash: Conti Ransomware Attacks Impact Healthcare and First Responder Networks.) In typical Conti ransomware attacks, malicious cyber actors steal files, encrypt servers and workstations, and demand a ransom payment.  To secure systems against Conti ransomware, […]

  • AA21-259A: APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus
    by CISA on September 16, 2021 at 5:00 pm

    Original release date: September 16, 2021SummaryThis Joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 8. See the ATT&CK for Enterprise for  referenced threat actor tactics and for techniques. This joint advisory is the result of analytic efforts between the Federal Bureau of Investigation (FBI), United States Coast Guard Cyber Command (CGCYBER), and the Cybersecurity and Infrastructure Security Agency (CISA) to highlight the cyber threat associated with active exploitation of a newly identified vulnerability (CVE-2021-40539) in ManageEngine ADSelfService Plus—a self-service password management and single sign-on solution. CVE-2021-40539, rated critical by the Common Vulnerability Scoring System (CVSS), is an authentication bypass vulnerability affecting representational state transfer (REST) application programming interface (API) URLs that could enable remote code execution. The FBI, CISA, and […]

  • AA21-243A: Ransomware Awareness for Holidays and Weekends
    by CISA on August 31, 2021 at 5:00 pm

    Original release date: August 31, 2021 | Last revised: September 2, 2021SummaryImmediate Actions You Can Take Now to Protect Against Ransomware • Make an offline backup of your data. • Do not click on suspicious links. • If you use RDP, secure and monitor it. • Update your OS and software. • Use strong passwords. • Use multi-factor authentication. The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have observed an increase in highly impactful ransomware attacks occurring on holidays and weekends—when offices are normally closed—in the United States, as recently as the Fourth of July holiday in 2021. The FBI and CISA do not currently have any specific threat reporting indicating a cyberattack will occur over the upcoming Labor Day holiday. However, the FBI and CISA are sharing the below information to provide awareness to be especially diligent in your network defense practices in the run up to holidays and […]

  • AA21-229A: BadAlloc Vulnerability Affecting BlackBerry QNX RTOS
    by CISA on August 17, 2021 at 5:00 pm

    Original release date: August 17, 2021 | Last revised: August 23, 2021SummaryOn August 17, 2021, BlackBerry publicly disclosed that its QNX Real Time Operating System (RTOS) is affected by a BadAlloc vulnerability—CVE-2021-22156. BadAlloc is a collection of vulnerabilities affecting multiple RTOSs and supporting libraries.[1] A remote attacker could exploit CVE-2021-22156 to cause a denial-of-service condition or execute arbitrary code on affected devices.[2] BlackBerry QNX RTOS is used in a wide range of products whose compromise could result in a malicious actor gaining control of highly sensitive systems,  increasing risk to the Nation’s critical functions. Note: at this time, CISA is not aware of active exploitation of this vulnerability. CISA strongly encourages critical infrastructure organizations and other organization developing, maintaining, supporting, or using affected QNX-based systems, to patch affected products as quickly as possible. Refer to the Mitigations […]

  • AA21-209A: Top Routinely Exploited Vulnerabilities
    by CISA on July 28, 2021 at 12:00 pm

    Original release date: July 28, 2021 | Last revised: August 20, 2021SummaryThis Joint Cybersecurity Advisory was coauthored by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), the United Kingdom’s National Cyber Security Centre (NCSC), and the U.S. Federal Bureau of Investigation (FBI).  This advisory provides details on the top 30 vulnerabilities—primarily Common Vulnerabilities and Exposures (CVEs)—routinely exploited by malicious cyber actors in 2020 and those being widely exploited thus far in 2021.   Cyber actors continue to exploit publicly known—and often dated—software vulnerabilities against broad target sets, including public and private sector organizations worldwide. However, entities worldwide can mitigate the vulnerabilities listed in this report by applying the available patches to their systems and implementing a centralized patch management system.  Click here for a PDF version of this […]

  • AA21-201A: Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013
    by CISA on July 20, 2021 at 1:00 pm

    Original release date: July 20, 2021 | Last revised: July 21, 2021SummaryThis Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. Note: CISA released technical information, including indicators of compromise (IOCs), provided in this advisory in 2012 to affected organizations and stakeholders. This Joint Cybersecurity Advisory—coauthored by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI)—provides information on a spearphishing and intrusion campaign conducted by state-sponsored Chinese actors that occurred from December 2011 to 2013, targeting U.S. oil and natural gas (ONG) pipeline companies. CISA and the FBI provided incident response and remediation support to a number of victims of this activity. Overall, the U.S. Government identified and tracked 23 U.S. natural gas […]

  • AA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
    by CISA on July 19, 2021 at 11:00 am

    Original release date: July 19, 2021 | Last revised: July 20, 2021SummaryThis Joint Cybersecurity Advisory was written by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to provide information on a Chinese Advanced Persistent Threat (APT) group known in open-source reporting as APT40. This advisory provides APT40’s tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help cybersecurity practitioners identify and remediate APT40 intrusions and established footholds. APT40—aka BRONZE MOHAWK, FEVERDREAM, G0065, Gadolinium, GreenCrash, Hellsing, Kryptonite Panda, Leviathan, MUDCARP, Periscope, Temp.Periscope, and Temp.Jumper—is located in Haikou, Hainan Province, People’s Republic of China (PRC), and has been active since at least 2009. APT40 has targeted governmental organizations, companies, and universities in a wide range of industries—including biomedical, robotics, and maritime […]

  • AA21-200B: Chinese State-Sponsored Cyber Operations: Observed TTPs
    by CISA on July 19, 2021 at 11:00 am

    Original release date: July 19, 2021 | Last revised: August 20, 2021SummaryThis advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9, and MITRE D3FEND™ framework, version 0.9.2-BETA-3. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques and the D3FEND framework for referenced defensive tactics and techniques. The National Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), and Federal Bureau of Investigation (FBI) assess that People’s Republic of China state-sponsored malicious cyber activity is a major threat to U.S. and Allied cyberspace assets. Chinese state-sponsored cyber actors aggressively target U.S. and allied political, economic, military, educational, and critical infrastructure (CI) personnel and organizations to steal sensitive data, critical and emerging key technologies, intellectual property, and personally identifiable information (PII). Some […]

  • AA21-148A: Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs
    by CISA on May 28, 2021 at 10:29 pm

    Original release date: May 28, 2021 | Last revised: May 29, 2021SummaryThis Joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are engaged in addressing a spearphishing campaign targeting government organizations, intergovernmental organizations (IGOs), and non-governmental organizations (NGOs). A sophisticated cyber threat actor leveraged a compromised end-user account from Constant Contact, a legitimate email marketing software company, to spoof a U.S.-based government organization and distribute links to malicious URLs.[1] CISA and FBI have not determined that any individual accounts have been specifically targeted by this campaign. Note: CISA and FBI acknowledge open-source reporting attributing the […]

DOJ and FBI

Information from the Department of Justice (DOJ) and the FBI focused on federal law enforcement, significant cases in the news, and other alerts.

FBI Top Stories

  • Evidence Response Team Training
    on October 5, 2021 at 7:00 am

    Evidence teams close the gap between a crime scene and the FBI Laboratory. Get an inside look at the Evidence Response Team Basic Course, where team members learn to process a scene with precision and care.

  • The ERT Toolbox
    on October 5, 2021 at 6:00 am

    Peer into the Evidence Response Team toolbox to see how everyday items and specialized equipment help the team process a scene.

  • Sentence in WMD Case
    on September 30, 2021 at 6:30 am

    A man who stole radiological devices containing Iridium-192 and was intent on hurting himself and others has been sentenced after pleading guilty to attempted use of a weapon of mass destruction.

  • Affinity Fraud Ponzi Scheme
    on September 23, 2021 at 6:00 am

    A Pennsylvania man who orchestrated a $59 million Ponzi scheme targeting fellow members of the Mennonite and Amish religious communities is spending time behind bars.

  • 9/11 Moved Many to Serve
    on September 9, 2021 at 8:00 am

    In the moments after the country was attacked 20 years ago, many felt a profound new calling—a desire to help and to serve. It set some on a path to the FBI.

  • New Top Ten Fugitive
    on September 8, 2021 at 1:00 pm

    Octaviano Juarez-Corro, who allegedly killed two people and injured three others when he brazenly fired multiple shots into a crowded Milwaukee park, has been added to the FBI’s Ten Most Wanted Fugitives list.

  • Diversifying the FBI
    on September 7, 2021 at 5:00 am

    The FBI has launched the Beacon Project, a program designed to create mutually beneficial relationships between the Bureau and Historically Black Colleges and Universities.

  • The 9/11 Toll on FBI Responders
    on September 2, 2021 at 9:00 am

    Twenty years after 9/11, personnel who responded to the attacks are still struggling with health issues related to exposure to toxins in the aftermath. More than 100 FBI employees have been affected thus far, and 17 have died as a result of their illnesses.

  • 9/11 Attacks 20 Years Ago Shaped Today’s FBI
    on August 26, 2021 at 11:00 am

    September 11, 2001 remains one of the most pivotal points in American history—and for the FBI, which still sees terrorism as the gravest threat to the U.S.

  • FBI and Girl Scouts Promote STEM Careers
    on August 19, 2021 at 8:30 am

    The FBI’s participation at a virtual National Girl Scout STEM Festival showed how much both organizations stand to gain from a closer relationship.

  • Surgeon Sentenced
    on August 17, 2021 at 6:00 am

    A Virginia obstetrician/gynecologist received a 59-year prison term after convincing women they needed unnecessary surgeries so he could profit from their insurance providers.

  • Behind the Scenes with Our Summer Interns
    on August 13, 2021 at 12:00 pm

    Get an inside look at the FBI’s Honors Internship Program from members of this summer’s intern class.

  • 60th Anniversary of Bearden Hijacking Case
    on August 3, 2021 at 6:00 am

    A spate of plane hijackings in 1961 prompted Congress to strengthen laws against crimes in the air.

  • Breaking Barriers
    on July 23, 2021 at 9:00 am

    A special agent in the San Juan Division is one of just a few African American women in the Bureau’s history to be selected for an FBI SWAT team.

  • Oklahoma FBI Case Volume Unprecedented
    on July 8, 2021 at 3:00 pm

    The Oklahoma City Field Office has become one of the FBI’s busiest in the year since the Supreme Court affirmed that much of the eastern half of the state is tribal land.

  • Hate Crimes a Top National Threat Priority
    on June 29, 2021 at 6:30 am

    The FBI is stepping up efforts with local law enforcement and civil rights groups to improve the reporting of hate crimes and enforcement of civil rights laws.

  • World Elder Abuse Awareness Day 2021
    on June 15, 2021 at 6:00 am

    People over 60 lost nearly $1 billion in online frauds and scams last year. Learn more about common fraud schemes that target older people as well as practical tips on how to protect yourself and your loved ones from scammers.

  • Operation Trojan Shield
    on June 8, 2021 at 10:30 am

    An innovative, international effort cracked open the encrypted communications platforms relied on by criminal organizations.

  • National Missing Children’s Day 2021
    on May 25, 2021 at 6:00 am

    In recognition of National Missing Children’s Day, we highlight the FBI's work to bring missing children home, whether they've been missing for days or decades.

  • IC3 Logs 6 Million Complaints
    on May 14, 2021 at 12:00 am

    A record-setting pace of reports to the FBI's Internet Crime Complaint Center shows how pervasive cyber-enabled crimes and scams have become.

  • New Executives Reflect FBI’s Push for Diversity
    on May 12, 2021 at 9:00 am

    As part of an ongoing effort to make the Bureau more representative and inclusive, our executive corridor has undergone a steady transition to better reflect the communities we serve.

  • FBI and Strike Force Target Fraud Against Federal Contracts
    on May 12, 2021 at 8:00 am

    More than 360 investigators, analysts, and data scientists are working across dozens of agencies as part of the Procurement Collusion Strike Force to deter and detect crimes involving federal money.

  • Director Wray Honors Fallen Officers During National Police Week
    on May 11, 2021 at 9:00 am

    FBI Director Christopher Wray thanked the nation’s law enforcement officers for their work keeping communities safe in remarks observing National Police Week.

  • Partnerships Are Key to Disrupting Violent Plots
    on May 7, 2021 at 8:00 am

    The increasingly insular nature of the terrorism threat is a growing challenge, which is why the FBI is leaning even more on two things that have long been essential to its success: partnerships and help from an aware and informed public.

  • Navajo-Language Posters Aim to Reach Critical Audience
    on May 5, 2021 at 8:00 am

    An initiative to translate FBI posters into Navajo illustrates one way the FBI and Native Americans are working together to solve missing and murdered indigenous persons cases.

  • International Scammer Sentenced
    on April 26, 2021 at 6:00 am

    A man who used phishing techniques to steal millions of dollars in a global business email compromise scheme received a 10-year prison term for his crimes.

  • Helping Crime Victims
    on April 19, 2021 at 10:00 am

    As the country observes National Crime Victims’ Rights Week, learn more about the assistance and services the FBI provides victims of crime and their families.

  • Scam PACs Are on the Rise
    on April 15, 2021 at 1:30 pm

    Thinking about donating to a political action committee to support an issue or candidate? Do your research first—the FBI is seeing an increase in reports of potentially fraudulent PACs.

  • InfraGard Marks 25 Years of Protecting the Country’s Critical Infrastructure
    on April 9, 2021 at 10:00 am

    From a small group that started in 1996 to an organization more than 75,000 strong today, InfraGard brings together representatives from the private and public sectors to help protect our nation’s critical infrastructure from attacks.

  • Stopping Public Corruption
    on April 7, 2021 at 6:00 am

    A Philadelphia city employee who was supposed to be ferreting out corruption and mismanagement is now serving a federal prison sentence for using his official position to solicit and accept bribes.

Kidnappings and Missing Persons

FBI Intelligence

    Feed has no items.