15 March 2023

CISA announces ransomware vulnerability warning pilot program


CISA announces ransomware vulnerability warning pilot program

The US Cybersecurity and Infrastructure Security Agency has launched the Ransomware Vulnerability Warning Pilot (RVWP) program that will proactively track common vulnerabilities being exploited by ransomware gangs, and warn exposed critical infrastructure entities of the risks to help them mitigate the threat before a cyberattack occurs.

The anti-ransomware project started out by alerting 93 organizations open to the Microsoft Exchange Service “ProxyNotShell” vulnerability that has been observed being exploited by operators of the Play and Cuba ransomware. As of January 2023, there were nearly 60,000 Exchange Server instances still vulnerable to the ProxyNotShell flaws.

“Ransomware attacks continue to cause untenable levels of harm to organizations across the country, including target rich, resource poor entities like many school districts and hospitals” said Eric Goldstein, Executive Assistant Director for Cybersecurity, CISA. “The RVWP will allow CISA to provide timely and actionable information that will directly reduce the prevalence of damaging ransomware incidents affecting American organizations.”

Back to the list

Latest Posts

Cyber security week in review: March 24, 2023

Cyber security week in review: March 24, 2023

The world in brief: BreachForums data breach site shut down, Bitcoin ATM maker General Bytes suffers a $1.5M hack, and more.
24 March 2023
Lionsgate streaming platform exposed data of 37M users

Lionsgate streaming platform exposed data of 37M users

Researchers discovered an unprotected ElasticSearch instance that contained about 20GB of data.
23 March 2023
New stealthy NUIT attack allows to remotely control Siri, Alexa and other smart voice assistants

New stealthy NUIT attack allows to remotely control Siri, Alexa and other smart voice assistants

The technique involves the use of inaudible sounds embedded in regular audio and video files to send malicious commands.
22 March 2023