Volt Typhoon has been active since at least 2021 and primarily targets U.S government and defense organizations for intelligence-gathering purposes. The group exploits vulnerable internet-facing servers to gain initial access and leverage living off the land binaries (LOLBin) for evasion purposes. In February 2024, the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), continue reading : Understanding Volt Typhoon: Key IOCs and TTPs

The CERT-PH team has received reports of phishing emails being sent using a fake CERT-PH address. Please be aware that the only legitimate email address used by CERT-PH is [email protected]. If you receive any communication claiming to be from CERT-PH but using a different email address, such as cert-ph@dict[.]ph[.]site or similar variations, do not open continue reading : PUBLIC ADVISORY: Beware of Phishing Emails Impersonating CERT-PH

From January to July 2024, CERT-PH handled 1823 cyber incidents affecting various organizations.

Microsoft has released its August 2024 Patch Tuesday security updates to fix multiple vulnerabilities across its products. Based on the official Microsoft release notes, there are 89 Microsoft CVEs, of which eight vulnerabilities are classified as ‘Critical’, two are ‘Moderate’ and the rest are designated as ‘Important’. Additionally, 12 non-Microsoft CVEs are included.” _____________________________ A. continue reading : Microsoft Releases August 2024 Patch Tuesday Security Updates

A faulty update from a cybersecurity provider has caused a global IT Service outage, resulting ina blue screen of death on Windows operating systems with installed Crowdstrike securityproducts. As of 07/19/2024, 5:45 PM, the CEO of CrowdStrike provided a statement on X:, “CrowdStrikeis actively working with customers impacted by a defect found in a single continue reading : Global IT Service Outage