Want to create an interactive transcript for this episode?
Podcast: CISA Cybersecurity Alerts
Episode: CISA Alert AA23-074A – Threat actors exploit progress telerik vulnerability in U.S. government IIS server.
Description: CISA, FBI, and the Multi-State Information Sharing and Analysis Center are releasing this joint Cybersecurity Advisory to provide IT infrastructure defenders with TTPs, IOCs, and methods to detect and protect against recent exploitation against Microsoft Internet Information Services web servers.AA23-074A Alert, Technical Details, and MitigationsAA23-074A STIX XMLMAR-10413062-1.v1 Telerik Vulnerability in U.S. Government IIS ServerTelerik: Exploiting .NET JavaScriptSerializer Deserialization (CVE-2019-18935)ACSC Advisory 2020-004Bishop Fox CVE-2019-18935: Remote Code Execution via Insecure Deserialization in Telerik UI<...