CISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star Blizzard 12/07/2023 12:00 PM EST Today, the Cybersecurity and Infrastructure Security Agency (CISA)—in coordination with the United Kingdom’s National Cyber Security Centre (UK-NCSC), Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), Canadian Centre for Cyber Security (CCCS), New Zealand National Cyber Security …
Tag Archives: cybersecurity
CISA Releases Advisory on Threat Actors Exploiting CVE-2023-26360 Vulnerability in Adobe ColdFusion
CISA Releases Advisory on Threat Actors Exploiting CVE-2023-26360 Vulnerability in Adobe ColdFusion 12/05/2023 10:00 AM EST Today, CISA released a Cybersecurity Advisory (CSA), Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers, to disseminate known indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs). The vulnerability in ColdFusion (CVE-2023-26360) presents as …
CISA and UK NCSC Unveil Joint Guidelines for Secure AI System Development
CISA and UK NCSC Unveil Joint Guidelines for Secure AI System Development 11/26/2023 07:00 AM EST Today, in a landmark collaboration, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the UK National Cyber Security Centre (NCSC) are proud to announce the release of the Guidelines for Secure AI System Development. Co-sealed by 23 domestic …
Continue reading “CISA and UK NCSC Unveil Joint Guidelines for Secure AI System Development”
CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed
CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed 11/21/2023 12:00 PM EST Today, the Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), Multi-State Information Sharing & Analysis Center (MS-ISAC), and Australian Signals Directorate’s Australian Cyber Security Center (ASD’s ACSC) released a joint Cybersecurity Advisory (CSA), #StopRansomware: …
FBI and CISA Release Advisory on Scattered Spider Group
FBI and CISA Release Advisory on Scattered Spider Group 11/16/2023 11:00 AM EST Today, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released a joint Cybersecurity Advisory (CSA) on Scattered Spider—a cybercriminal group targeting commercial facilities sectors and subsectors. The advisory provides tactics, techniques, and procedures (TTPs) obtained through …
Continue reading “FBI and CISA Release Advisory on Scattered Spider Group”
CISA, FBI, and MS-ISAC Release Advisory on Rhysida Ransomware
CISA, FBI, and MS-ISAC Release Advisory on Rhysida Ransomware 11/15/2023 11:00 AM EST Today, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint Cybersecurity Advisory (CSA), #StopRansomware: Rhysida Ransomware, to disseminate known Rhysida ransomware indicators of compromise (IOCs), detection …
Continue reading “CISA, FBI, and MS-ISAC Release Advisory on Rhysida Ransomware”
CISA Releases Roadmap for Artificial Intelligence Adoption
Today, CISA released its Roadmap for Artificial Intelligence—in alignment with White House Executive Order 14110: Safe, Secure, And Trustworthy Development and Use of Artificial Intelligence—to outline a comprehensive set of actions CISA will take along five lines of effort: Responsibly use AI to support our mission. Assure AI systems. Protect critical infrastructure from malicious use …
Continue reading “CISA Releases Roadmap for Artificial Intelligence Adoption”
CISA Releases Update to Royal Ransomware Advisory
CISA Releases Update to Royal Ransomware Advisory 11/13/2023 02:00 PM EST Today, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released an update to joint Cybersecurity Advisory (CSA) #StopRansomware: Royal Ransomware. The updated advisory provides network defenders with additional information on tactics, techniques, and procedures (TTPs) and indicators of compromise …
Continue reading “CISA Releases Update to Royal Ransomware Advisory”
CISA, FBI, NSA, and Treasury Release Guidance on OSS in IT/ICS Environments
CISA, FBI, NSA, and Treasury Release Guidance on OSS in IT/ICS Environments 10/10/2023 12:00 PM EDT Today, CISA, the Federal Bureau of Investigation, the National Security Agency, and the U.S. Department of the Treasury released guidance on improving the security of open source software (OSS) in operational technology (OT) and industrial control systems (ICS). In …
Continue reading “CISA, FBI, NSA, and Treasury Release Guidance on OSS in IT/ICS Environments”
NSA and CISA Release Advisory on Top Ten Cybersecurity Misconfigurations
NSA and CISA Release Advisory on Top Ten Cybersecurity Misconfigurations 10/05/2023 02:25 PM EDT Today, the National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA) released a joint cybersecurity advisory (CSA), NSA and CISA Red and Blue Teams Share Top Ten Cybersecurity Misconfigurations, which provides the most common cybersecurity misconfigurations in large organizations, …
Continue reading “NSA and CISA Release Advisory on Top Ten Cybersecurity Misconfigurations”