CISA Alert AA23-074A – Threat actors exploit progress telerik vulnerability in U.S. government IIS server. [CISA Cybersecurity Alerts]

CISA, FBI, and the Multi-State Information Sharing and Analysis Center are releasing this joint Cybersecurity Advisory to provide IT infrastructure defenders with TTPs, IOCs, and methods to detect and protect against recent exploitation against Microsoft Internet Information Services web servers.
AA23-074A Alert, Technical Details, and Mitigations
AA23-074A STIX XML
MAR-10413062-1.v1 Telerik Vulnerability in U.S. Government IIS Server
Telerik: Exploiting .NET JavaScriptSerializer Deserialization (CVE-2019-18935)
ACSC Advisory 2020-004
Bishop Fox CVE-2019-18935: Remote Code Execution via Insecure Deserialization in Telerik UI
Volexity Threat …

advisory alert alerts analysis center cisa cisa alert cybersecurity cybersecurity advisory defenders deserialization detect exploit exploitation exploiting fbi government iis information information sharing infrastructure internet iocs it infrastructure microsoft mitigations progress progress telerik protect server servers services sharing state stix technical telerik threat threat actors ttps u.s. government vulnerability web xml