CISA Advisory: Hive Ransomware

November 17th, 2022

The Cybersecurity & Infrastructure Security Agency (CISA) released a joint advisory with the Federal Bureau of Investigation (FBI) and Department of Health and Human Services (HHS) to raise awareness of indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) used by the Hive ransomware gang. Hive has been known to target the Information Technology sector. Initial Access is commonly gained through exploitation of public facing vulnerabilities (e.g., Exchange, FortiOS, etc.) or compromised credentials. The #stopransomware advisories are useful as they contain actionable intelligence to improve threat-informed cyber defenses and include downloadable IOC packages in STIX format, that can be used in conjunction with the MSP’s technology stack to automate the hunting of indicators in the MSPs managed environments.

-Kaseya Threat Management Team

Security Advisories Archives

RSS Feed

To View the RSS Feed of our advisory postings, please input this link into your feed reader.

audIT

Powered Services Pro

BMS

ConnectBooster

Datto Autotask PSA

BMS

Datto Autotask PSA

Vorex

BullPhish ID

Dark Web ID

Datto Autotask PSA

Datto Backup Appliances

Datto Backup for Microsoft Azure

Datto RMM

Datto Secure Edge

IT Glue

Managed SOC

VSA

vPenTest

Datto Backup Appliances

Unitrends Backup Appliances

Datto Backup for Microsoft Azure

Unitrends Backup for Microsoft Azure

Datto Edge Routers

Datto Secure Edge

Datto Switches

Datto WiFi

Datto Endpoint Backup with Disaster Recovery

Datto File Protection

Unitrends Endpoint Backup with Disaster Recovery

Datto RMM

VSA

Traverse

Graphus

IT Glue

MyGlue

Network Glue

Network Detective Pro

vPenTest

Benefits of Integration and How It Can Transform Your Business

Datto Networking and VSA 10: Your Shortcut to Smarter Networks

Automating Foundational Cybersecurity with VSA

Security Advisory

CISA Advisory: Hive Ransomware