Cybersecurity

Cyber Resilience – The Importance of Proper Communication During an Incident

While cybersecurity teams tend to focus on the technical aspects of preventing and responding to incidents, an often overlooked, yet crucial feature of incident response is the importance of crisis communication. Effective communication during a cyber attack can help maintain customer trust, mitigate further damage to the brand, and ultimately lead to a smoother recovery process. Three key elements to building a foundation for successful crisis management include: creation of a crisis communication committee, developing a crisis communication plan, and conducting breach simulations.

Read more about Cyber Resilience – The Importance of Proper Communication During an Incident

CISA Alert – AT&T Discloses Breach of Customer Data

CISA sent out an alert on Friday regarding AT&T's recent disclosure of a data breach. AT&T reported unauthorized access of customer data in a third-party cloud platform. CISA encourages affected customers to review AT&T’s disclosure for additional information and guidance.

What Happened

Read more about CISA Alert – AT&T Discloses Breach of Customer Data

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 16, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

Read more about CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 16, 2024

Supplemental Cyber Highlights – July 11, 2024

The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

Critical Infrastructure

Read more about Supplemental Cyber Highlights – July 11, 2024

CISA Cybersecurity Advisory – Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth

CISA released a Cybersecurity Advisory (CSA) today, “CISA Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth.” This CSA details key findings and lessons learned from a 2023 assessment – which was performed as a no-notice, long-term simulation of nation-state cyber operations – along with the red team’s tactics, techniques, and procedures (TTPs) and associated network defense activity.

Read more about CISA Cybersecurity Advisory – Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth

Ransomware Resilience – Understanding Ransomware Behaviors and the Typical Ransomware Attack Chain

While ransomware attacks are seemingly on the rise, as indicated by Mandiant, understanding the attackers’ “playbook” is a worth-while endeavor for any cybersecurity team. Recent research conducted by Cisco Talos helps do just that.

Read more about Ransomware Resilience – Understanding Ransomware Behaviors and the Typical Ransomware Attack Chain

NSA Cybersecurity Information Sheet: Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar

The NSA published another Cybersecurity Information Sheet (CSI) today, its final zero-trust report, focusing on the Automation and Orchestration pillar of the Zero Trust (ZT) framework. The CSI is intended to help organizations better detect cyber threats and respond to common threats faster. It provides recommendations for automating routine tasks to better focus resources on investigating anomalies associated with advanced tactics, techniques, and procedures.

Read more about NSA Cybersecurity Information Sheet: Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar

Partner Report - CISA and FBI Release Secure by Design Alert on Eliminating OS Command Injection Vulnerabilities

Yesterday, CISA and the FBI released a Secure by Design Alert, Eliminating OS Command Injection Vulnerabilities, in response to recent well-publicized threat actor campaigns that exploited OS command injection defects in network edge devices to target and compromise users.

Read more about Partner Report - CISA and FBI Release Secure by Design Alert on Eliminating OS Command Injection Vulnerabilities

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 11, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

Read more about CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 11, 2024

CISA Releases Guidebook on Operational Security

Last week, CISA released a guidance document, “Guide to Operational Security for Election Officials,” which offers an overview of operational security, highlighting potential risks and offering practical mitigation measures. Although the product focuses on election infrastructure, the mitigation guidance is applicable to every critical infrastructure organization.

Read more about CISA Releases Guidebook on Operational Security

You are here

Cybersecurity

Cyber Resilience – The Importance of Proper Communication During an Incident

CISA Alert – AT&T Discloses Breach of Customer Data

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 16, 2024

Supplemental Cyber Highlights – July 11, 2024

CISA Cybersecurity Advisory – Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth

Ransomware Resilience – Understanding Ransomware Behaviors and the Typical Ransomware Attack Chain

NSA Cybersecurity Information Sheet: Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar

Partner Report - CISA and FBI Release Secure by Design Alert on Eliminating OS Command Injection Vulnerabilities

CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – July 11, 2024

CISA Releases Guidebook on Operational Security

Pages

You are here

Cybersecurity

Pages

Footer Email Signup