Skip to content

Cyber Security Report #9 – 2023

NTT Security’s monthly report on cybersecurity contains three interesting observations.

AKIRA Attacks on Cisco ASA and Ransomware Attack Manual. On September 6, Cisco announced a vulnerability, CVE-2023-20269, in Cisco ASA and FTD software. Analysis of the attack manual showed that many of the attack steps were known and defensible, while others exploited
zero-day vulnerabilities.

Pentagon unveils 2023 cyber strategy. In September, the Pentagon released a condensed version of the cyber strategy. The new strategy places an emphasis on helping US allies and partners build cyber capabilities and working together to improve response capabilities in cyberspace.

Bankruptcy notices and tampering of Japanese official corporate websites. At the beginning of September, falsified notices of bankruptcy and other problems were posted on official corporate websites. There were also cases in which emails of similar notices were sent due to unauthorized access to email systems.