GreyNoiseSep 19, 2024

🚨 U.S. Government Takes Control of Chinese State-Sponsored Botnet — How GreyNoise Was Already Tracking Key Vulnerabilities 👀🔐

Today's takedown of a 260,000-devices-strong botnet run by Chinese state-sponsored hackers marks a major milestone in cybersecurity. GreyNoise was ahead of the curve, providing critical insights into many of the vulnerabilities used to enlist devices into this global botnet.

Our team has been monitoring 44 of the 66 CVEs identified in the U.S. government’s advisory (see image below), including some of the most exploited vulnerabilities used in this botnet. This proactive monitoring gives our customers a head start, helping them mitigate threats before they escalate into full-blown incidents.

Of those 44 CVEs, GreyNoise observed malicious traffic targeting 29 vulnerabilities. The QNAP NAS Improper Authorization Vulnerability (CVE-2021-28799) saw the highest volume of attempted discovery or exploitation traffic. Attackers used this vulnerability to compromise devices, enlisting them into the botnet that has now been taken down by U.S. authorities.

With GreyNoise, organizations stay ahead of emerging threats, receiving the intelligence they need before vulnerabilities are weaponized on a massive scale. Learn more about how we can help protect your organization from the most dangerous exploits.

#botnet #fbi #nsa #cnmf #threatintelligence #cybersecurity

Matt WillemsenApr 12, 2024
22 ‘hunt forward’ missions deployed overseas in 2023, Cyber Command leader says
https://therecord.media/cyber-command-hunt-forward-missions-2023-haugh-senate #USCyberCommand #CNMF #malware #elections
22 ‘hunt forward’ missions deployed overseas in 2023, Cyber Command leader says

Gen. Timothy Haugh told senators that personnel from the Cyber National Mission Force (CNMF) were assigned to watch foreign networks nearly two dozen times in 2023, with permission of the host country.

Matt WillemsenJan 7, 2024
US military’s Cyber National Mission Force gets a new chief
https://therecord.media/cyber-national-mission-force-lorna-mahlock #US #CyberCommand #CNMF #LornaMahlock
US military’s Cyber National Mission Force gets a new chief

Marine Corps Maj. Gen. Lorna Mahlock will assume command of the Cyber National Mission Force (CNMF) during a change of command ceremony at Fort Meade, Maryland.

𝕋𝕣𝕚𝕓𝕒𝕝ℂ𝕪𝕓𝕖𝕣𝕊𝕖𝕔𝕦𝕣𝕚𝕥𝕪Mar 25, 2023

[#CyberLand News] Weekly #Threats and #Malware

#threatintel
> #DarkPower #ransowmare
> #RedLine #malware
> #CNMF #cyberoperation
> #BlackGuard #stealer
> #Linux & #ShellBot #malware
> #CommonMagic #malware #cyberwar

https://tribalsec.substack.com/p/cyberland-news-weekly-6-threats-and

[CyberLand News] Weekly #6 - Threats and Malware

Last news on threats, malware and vulnerabilties in the cyber land

TribalSec’s Substack
Maggie Smith 👩🏼‍💻(she/her)Dec 20, 2022
And now for the real scoop about #CNMF getting elevated to a sub-unified command:
https://www.cybercom.mil/Media/News/Article/3250075/the-evolution-of-cyber-newest-subordinate-unified-command-is-nations-joint-cybe/
The Evolution of Cyber: Newest Subordinate Unified Command is Nation’s Joint Cyber Force

The Cyber National Mission Force officially became the Department of Defense’s newest subordinate unified command during a ceremony at U.S. Cyber Command Headquarters here, Dec. 19, 2022, highlighting

U.S. Cyber Command
Maggie Smith 👩🏼‍💻(she/her)Dec 19, 2022
And it’s officially official: #CNMF is now a sub-unified command underneath #USCYBERCOM 🥳
This elevation formalizes the military org-chart, making the Cyber National Mission Force a more permanent fixture.