chevron-down Created with Sketch Beta.

FBI Cyber Alerts

Public Alerts from FBI Cyber Outreach and FBI Joint-Cyber Alerts

Click here to contact your local field office.

Click here to view the Department of Justice's one-stop ransomware resource.

2024

#StopRansomware: Phobos Ransomware (February 29)

SVR cyber actors adapt tactics for initial cloud access (February 26)

Identification and Disruption of the Warzone RAT (February 15)

Secure by Design Alert: Security Design Improvements for SOHO Device Manufacturers (January 31)

2023

#StopRansomware: ALPHV Blackcat  (December 19)

Secure by Design Alert:  How Manufacturers Can Protect Customers by Eliminating Default Passwords (December 15)

#StopRansomware: Rhysida Ransomware (November 15)

#StopRansomware: AvosLocker Ransomware (Update) (October 11)

Identification and Disruption of QakBot Infrastructure (August 30)

Increased Truebot Activity Infects U.S. and Canada Based Networks (July 6)

Understanding Ransomware Threat Actors: LockBit (June 14) 

#StopRansomware: Royal Ransomware (March 2)

#StopRansomware: Ransomware Attacks on Critical Indrastructure Fund DPRK Malicious Cyber Activities (February)

2022

Criminal Actors Use Business Email Compromise to Steal Large Shipments of Food Products and Ingredients (December 15)

#StopRansomware: Cuba Ransomware (December 1)

#StopRansomware: Hive Ransomware (November 17)

#StopRansomware: Daixin Team (October 21)

Iranian Cybergroup Emennet Pasargad Conducting Hack-and-Leak Operations Using False-Flag Personas (October 20)

Iranian State Actors COnduct Cyber Operations Against the Government of Albania (September 21)

Cyber Criminals Targeting Healthcare Payment Processors, Costing Victims Millions in Losses (September 14)

Iranian Islamic Revolutionary Guard Corps - Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations (September 14)

Unpatched and Outdated Medical Devices Provide Cyber Attack Opportunities  (September 12)

Protecting Against Cyber Threats to Managed Service Providers and their Customers (May 11)

Iranian Government-Sponsored Actors Conduct Cyber Operations Against Global Government and Commercial Networks (February 24)

New Sandworm malware Cyclops Blink replaces VPNFilter (February 23)

Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Information and Technology (February 17)

Indicators of Compromise Associated with BlackByte Ransomware (February 11)

2021 Trends Show Increased Globalized Threat of Ransomware (February 9)

Indicators of Compromise Associated with LockBit 2.0 Ransomware (February 4)

Potential for Malicious Cyber Activities to Disrupt the 2022 Beijing Winter Olympics and Paralympics (January 31)

Context and Recommendations to Protect Against Malicious Activity by Iranian Cyber Group Emennet Pasargad (January 26)

Indicators of Compromise Associated with Diavol Ransomware (January 19)

Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure (January 11)

For information regarding alerts prior to this year, visit the FBI's Internet Crime Complaint Center.