‼️This week we observed a large-scale malware campaign targeting Polish government institutions. Based on technical indicators and similarity to attacks described in the past, the campaign can be associated with the APT28 activity set. More➡️ cert.pl/en/posts/2024/…

🏖 Are U looking for some summer work? Our open-source cybersecurity projects, Artemis, the web vulnerability scanner and Drakvuf, a hypervisor malware sandbox got accepted to the Google Summer of Code! Apply and make the Internet a better place with us at honeynet.org/gsoc/gsoc-2024…

As a Polish CERT we believe secure e-mail is essential for all institutions. That’s why we’re proud to introduce you to Mailgoose 🪿

The web app that allows to check SPF/DKIM/DMARC helping CERTs worldwide safeguard email servers effortlessly ⤵️

github.com/CERT-Polska/ma…

❓Have you heard about our Artemis project? We have been successfully using it for over a year to scan and detect web vulnerabilities on a large scale! Take a look at our examples and lessons learned ➡️cert.pl/en/posts/2024/…

The CERT Polska, FBI, NCSC UK, Cybersecurity and Infrastructure Security Agency, @NSAgov and other partners published a joint advisory warning that Russia-based cyber actor—also known as APT 29 /the Dukes/ CozyBear/ NOBELIUM/Midnight Blizzard—are exploiting CVE-2023-42793 at a large scale, targeting servers hosting…

Give a man a writeup and he has IoCs for a day. Teach a man to RE and he gets a feed for a lifetime. In our new blog post we analyse an #Xworm sample (unpacking, communication, malduck module). Everything described in detail to let you repeat it. cert.pl/en/posts/2023/…

Do you like unpacking malware? We too! During our recent #AgentTesla analysis we wrote unpacker for #DotRunPeX , and decided to share it. Read our blog post for more info: cert.pl/en/posts/2023/…

CERT Polska (CERT-PL) is now a CVE Numbering Authority (CNA) assigning CVE IDs for vulnerabilities it discovers + those reported to CERT Polska for coordinated disclosure

cve.org/Media/News/ite…

#CVE #CNA #Vulnerability #Vulnerability Management #Cybersecurity CVE

As the first institution in Poland and one of 7 CERTs in Europe, we can now assign CVE numbers! They are used to define, identify and catalog cybersecurity vulnerabilities. Participation in the CVE is an important step in our development plan! cert.pl/en/posts/2023/…

Another important step! We have open-sourced a tool that CERT Polska uses to notify scanned institutions about vulnerabilities. Now you can not only scan with Artemis, but also notify the administrators of any problems you discover. Get started 👉github.com/CERT-Polska/Ar…

Meet #PowerDash 🐀, a new PowerShell-based RAT that we've come across in a recent campaign targeting Polish users. We've described the campaign and the malware in a short article⬇️
cert.pl/en/posts/2023/…

❗Together with the Military Counterintelligence Service we've detected an ongoing espionage campaign linked to the APT29/NOBELIUM group. We're publishing detailed technical analysis of their latest tools, mostly never publicly described before. Read more: gov.pl/web/baza-wiedz…