Cybersecurity

Joint Guide on Responding to DDoS Attacks

Last week, the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) published an updated guide, Understanding and Responding to Distributed Denial-of-Service Attacks, which provides organizations proactive steps to reduce the likelihood and impact of distributed denial-of-service (DDoS) attacks. The guidance is aimed towards both network defenders and leaders to help them understand and respond to DDoS attacks, which can cost an organization time, money, and reputational damage.

Read more about Joint Guide on Responding to DDoS Attacks

CISA Releases Cross-Sector Cybersecurity Performance Goals

Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the Cross-Sector Cybersecurity Performance Goals (CPGs), which consist of voluntary, fundamental cybersecurity practices for critical infrastructure owners and operators to meaningfully reduce the likelihood of known risks and adversary techniques.

Read more about CISA Releases Cross-Sector Cybersecurity Performance Goals

Security Awareness – Microsoft Publishes Guidance on Securing IoT Devices against Attacks Targeting Critical Infrastructure

In August, a ransomware group claimed to have compromised a U.K. water utility’s industrial control systems (ICS). Although the attack did not impact the utility’s ability to provide safe drinking water, it nevertheless underscores the risk of threat actors attempting to gain access to ICS environments. Consequently, Microsoft recently published guidance on securing IoT devices used by critical infrastructure organizations.

Read more about Security Awareness – Microsoft Publishes Guidance on Securing IoT Devices against Attacks Targeting Critical Infrastructure

Security Awareness – Dragos’s Latest Industrial Ransomware Analysis Underscores Increasing Threat to Industrial Systems

Ransomware groups are continuing to target the industrial sector at an increasing rate and new ransomware gangs are emerging, threatening to push the rate of attacks up even higher, according to Drago’s most recent third quarter Industrial Ransomware Analysis report.

Read more about Security Awareness – Dragos’s Latest Industrial Ransomware Analysis Underscores Increasing Threat to Industrial Systems

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - October 27, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - October 27, 2022

CISA Identifies Goals for Enhancing Stakeholder Engagement in New Strategic Plan

Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its first Stakeholder Engagement Strategic Plan, in which it expresses its commitment to collaboratively working with stakeholders to increase the security and resilience of critical infrastructure.

Read more about CISA Identifies Goals for Enhancing Stakeholder Engagement in New Strategic Plan

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - October 25, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - October 25, 2022

Cyber Resilience – Key Findings from IBM’s 2022 Incident Responder Study

Cyber attacks continue to increase and impact all organizations. As such, a recent study by IBM Security highlighted that 67 percent of incident responders are experiencing greater stress or anxiety due to the pressures of responding to a cyber incident. Therefore, as cyber incident response continues to become more challenging and cumbersome, it’s important for organizations to provide sufficient operational and psychological support to help reduce stress for responders.

Read more about Cyber Resilience – Key Findings from IBM’s 2022 Incident Responder Study

Threat Awareness – Old Malware Repurposed for Ransomware Attacks

Ursnif malware, one of the most financially destructive banking malware in history, has been retooled into a backdoor trojan that could be used to steal data or execute ransomware attacks. This update has been characterized as a “significantly dangerous variant … that should be watched closely,” according to security researchers at Mandiant.

Read more about Threat Awareness – Old Malware Repurposed for Ransomware Attacks

Joint Cybersecurity Advisory – #StopRansomware: Daixin Team

Last week, the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the Department of Health and Human Services (HHS) published a joint Cybersecurity Advisory (CSA) to provide information on the “Daixin Team,” a cybercrime group actively targeting U.S. businesses, predominantly in the Healthcare and Public Health (HPH) Sector, with ransomware and data extortion operations.

Read more about Joint Cybersecurity Advisory – #StopRansomware: Daixin Team

You are here

Cybersecurity

Joint Guide on Responding to DDoS Attacks

CISA Releases Cross-Sector Cybersecurity Performance Goals

Security Awareness – Microsoft Publishes Guidance on Securing IoT Devices against Attacks Targeting Critical Infrastructure

Security Awareness – Dragos’s Latest Industrial Ransomware Analysis Underscores Increasing Threat to Industrial Systems

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - October 27, 2022

CISA Identifies Goals for Enhancing Stakeholder Engagement in New Strategic Plan

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - October 25, 2022

Cyber Resilience – Key Findings from IBM’s 2022 Incident Responder Study

Threat Awareness – Old Malware Repurposed for Ransomware Attacks

Joint Cybersecurity Advisory – #StopRansomware: Daixin Team

Pages

You are here

Cybersecurity

Pages

Footer Email Signup