A newer ransomware group known as Vice Society is targeting the PrintNightmare vulnerabilities in some of its intrusions now.
TA505, a well-known cybercrime group, is using signed MSI files and other techniques to install the ServHelper RAT on victims' systems.
Details of the ProxyShell Exchange server flaws are now public and attackers have begun scanning the Internet for vulnerable servers.
The use of weak random number generators in many IoT devices undermines the security of the encryption keys those devices generate.
CISA Director Jen Easterly said the agency's new Joint Cuber Defense Collaborative seeks imagination and innovation in the hacker community to help secure critical infrastructure.