Technical approaches to uncovering and remediating malicious activity

This joint advisory released in September 2020 is the result of a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the United Kingdom, and the United States. It highlights technical approaches to uncovering malicious activity and includes mitigation steps according to best practices. The purpose of this report is to enhance incident response among partners and network administrators along with serving as a playbook for incident investigation.

Click here to view the advisory on CISA's site.