all InfoSec news
AA23-250A: Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475
Cyber Exposure Alerts www.tenable.com
A joint Cybersecurity Advisory examines the exploitation of two critical vulnerabilities by nation-state threat actors.
Background
On September 7, a joint Cybersecurity Advisory (CSA) AA23-250A coauthored by the Cybersecurity and Infrastructure Security Agency (CISA) and other partners was released to highlight the tactics, techniques, and procedures (TTPs) observed by nation-state advanced persistent threat (APT) actors. According to the CSA, an unnamed Aeronautical organization was breached after the APT actors exploited CVE-2022-47966 …
advisory agency cisa critical critical vulnerabilities csa cve cve-2022-42475 cve-2022-47966 cybersecurity cybersecurity advisory exploit exploitation infrastructure infrastructure security nation partners security september state tactics threat threat actors vulnerabilities