Cybersecurity

Recent Ransomware Attack Highlights the Challenging Balancing Act Confronting Municipal CISOs

The city of Oakland, California was recently the victim of a ransomware attack that impacted many of the city’s systems and disrupted some services. This latest ransomware attack, alongside ongoing cyber attacks against local governments, underscores the challenges that CISOs face in protecting a broad range of municipal services from numerous cyber threats. As the Oakland attack highlights, municipal governments have become major targets for ransomware gangs and state sponsored threat actors.

Read more about Recent Ransomware Attack Highlights the Challenging Balancing Act Confronting Municipal CISOs

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 7, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

None

Alerts, Updates, and Bulletins:

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 7, 2023

EPA Unveils Action Plan to Add Cyber Reviews to Sanitary Surveys

Last week, the EPA formally released its long-anticipated interpretive memorandum requiring states to evaluate the cybersecurity of operational technology used by a public water system (PWS) as part of periodic sanitary surveys or through other state programs.

Read more about EPA Unveils Action Plan to Add Cyber Reviews to Sanitary Surveys

White House Releases New National Cybersecurity Strategy

Today, the White House released a new National Cybersecurity Strategy, which aims to identify the cyber challenges facing the country and offer solutions for improving the security and resilience of federal and private sector networks and systems. The strategy underscores that robust collaboration, particularly between the public and private sectors, is essential to securing cyberspace.

Read more about White House Releases New National Cybersecurity Strategy

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 2, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 2, 2023

CISA Releases New Tool Mapping Adversary Behavior to MITRE ATT&CK®

Yesterday, the Cybersecurity and Infrastructure Security Agency (CISA), in partnership with the Homeland Security Systems Engineering and Development Institute™ (HSSEDI), released Decider, a tool for mapping adversary behavior to the MITRE ATT&CK® framework.

Read more about CISA Releases New Tool Mapping Adversary Behavior to MITRE ATT&CK®

Security Awareness – Use of Backdoors One of the Top Attack Methods by Threat Actors

The use of backdoor malware, which provides threat actors with remote access to a device or network, was one of the top attack methods employed by malicious cyber actors last year, according to a recent IBM report.

Read more about Security Awareness – Use of Backdoors One of the Top Attack Methods by Threat Actors

Threat Awareness – PureCrypter Malware Downloader Leads to Ransomware and Other Malicious Activity

An unknown threat actor is utilizing the PureCrypter malware downloader to infect government organizations with information stealers and various ransomware strains, according to researchers at Menlo Security.

Read more about Threat Awareness – PureCrypter Malware Downloader Leads to Ransomware and Other Malicious Activity

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks

Today, the Cybersecurity and Infrastructure Security Agency (CISA) published a Cybersecurity Advisory (CSA) detailing tactics, techniques, procedures (TTPs) and key findings from a 2022 Red Team assessment to provide network defenders of critical infrastructure organizations proactive steps they can take to reduce the threat of similar activity from malicious cyber actors.

Read more about CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 28, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 28, 2023

You are here

Cybersecurity

Recent Ransomware Attack Highlights the Challenging Balancing Act Confronting Municipal CISOs

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 7, 2023

EPA Unveils Action Plan to Add Cyber Reviews to Sanitary Surveys

White House Releases New National Cybersecurity Strategy

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - March 2, 2023

CISA Releases New Tool Mapping Adversary Behavior to MITRE ATT&CK®

Security Awareness – Use of Backdoors One of the Top Attack Methods by Threat Actors

Threat Awareness – PureCrypter Malware Downloader Leads to Ransomware and Other Malicious Activity

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - February 28, 2023

Pages

You are here

Cybersecurity

Pages

Footer Email Signup