APT actors are once again targeting Elections Organizations

CISA has recently observed advanced persistent threat (APT) actors exploiting multiple legacy vulnerabilities in combination with a newer privilege escalation vulnerability—CVE-2020-1472—in Windows Netlogon. The commonly used tactic, known as vulnerability chaining, exploits multiple vulnerabilities in the course of a single intrusion to compromise a network or application. 

This recent malicious activity has often, but - 1/2

Follow

not exclusively, been directed at federal and state, local, tribal, and territorial (SLTT) government networks. Although it does not appear these targets are being selected because of their proximity to elections information, there may be some risk to elections information housed on government networks.

us-cert.cisa.gov/ncas/alerts/a - 2/2

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.