U.S. Government warns about cyber-attacks; National Newspaper Association alerts members and gives steps

The National Newspaper Association is alerting members that the Federal Bureau of Investigation and the Cybersecurity and Infrastructure Security Agency have released a joint Cybersecurity Advisory.

"NNA members have reported being attacked by the advised ransomware," the association says, giving steps the agency suggests you take: 

Prioritize remediating known exploited vulnerabilities.
Train users to recognize and report phishing attempts.
Enable and enforce multi-factor authentication.

You may also wish to read this article by TechCrunch that breaks down the advisory.

"Since approximately September 2022, cyber criminals have compromised U.S. and international
organizations with a Royal ransomware variant," the Cybersecurity Advisory release explains. "Royal actors disable antivirus software and exfiltrate large amounts of data before ultimately deploying the ransomware and encrypting the systems. Royal actors have made ransom demands ranging from approximately $1 million to $11 million USD in Bitcoin. . . . Royal actors have targeted numerous critical infrastructure sectors including, but not limited to, manufacturing, communications, health care and public health care and education."