Security Advisory and Testing Hub

Our security team creates safe, actionable tests for the most important threats.

Why is testing important? CISA recommends "continually testing your security program, at scale, in a production environment to ensure optimal performance against the MITRE ATT&CK techniques identified in this advisory.”

Prelude tests are designed to run on production environments, across every host in your fleet, to give you assurance around your protection against these threats. Every advisory contains the following ingredients:

  • An executive summary aims to answer the question: should I care about this?
  • Technical details aim to answer the question: am I protected?
  • Mitigations aim to answer the question: how can I become protected?

Latest Advisories

AdvisoryCISAAA24-057A

February 26, 2024

SVR Cyber Actors Adapt Tactics for Initial Cloud Access

AdvisoryCISAAA24-046A

February 15, 2024

Threat Actor Leverages Compromised Account of Former Employee to Access State Government Organization

AdvisoryCISAAA24-038A

February 7, 2024

PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure

AdvisoryCISAAA24-016A

January 16, 2024

Known Indicators of Compromise Associated with Androxgh0st Malware

AdvisoryCISAAA23-353A

December 19, 2023

#StopRansomware: ALPHV Blackcat

AdvisoryCISAAA23-352A

December 18, 2023

#StopRansomware: Play Ransomware

AdvisoryCISAAA23-349A

December 15, 2023

Enhancing Cyber Resilience: Insights from the CISA Healthcare and Public Health Sector Risk and Vulnerability Assessment

AdvisoryCISAAA23-347A

December 13, 2023

Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally

AdvisoryCISAAA23-341A

December 7, 2023

Russian FSB Cyber Actor Star Blizzard Continues Worldwide Spear-phishing Campaigns

AdvisoryCISAAA23-339A

December 5, 2023

Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers

AdvisoryCISAAA23-335A

December 2, 2023

IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities

AdvisoryCISAAA23-325A

November 21, 2023

#StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability

Subscribe to advisory alerts

Be immediately notified of new advisories and associated security tests.

Solutions
For Detection & Response TeamsFor CISOs
Platform
DetectCrowdStrike
Company
AboutVisionCareersBlogAdvisoriesResourcesCommunityPress
Book a Demo

©2024 Prelude Research, Inc. All rights reserved.
Prelude, its logo and other trademarks are trademarks of Prelude Research, Inc. and may not be used without permission.

By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
DenyAccept

Cookies

Heading to RSA in May? Machine speed detection and response is waiting for you at our booth
See Prelude at RSA
Arrow Right