network – Smart Cyber Security

CISA Releases Update to Royal Ransomware Advisory

CISA Releases Update to Royal Ransomware Advisory 11/13/2023 02:00 PM EST Today, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released an update to joint Cybersecurity Advisory (CSA) #StopRansomware: Royal Ransomware. The updated advisory provides network defenders with additional information on tactics, techniques, and procedures (TTPs) and indicators of compromise …

Continue reading “CISA Releases Update to Royal Ransomware Advisory”

CISA, NSA, FBI, and MS-ISAC Release Phishing Prevention Guidance

CISA, NSA, FBI, and MS-ISAC Release Phishing Prevention Guidance 10/18/2023 08:00 AM EDT Today, the Cybersecurity Infrastructure and Security Agency (CISA), the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint guide, Phishing Guidance: Stopping the Attack Cycle at Phase One. The …

Continue reading “CISA, NSA, FBI, and MS-ISAC Release Phishing Prevention Guidance”

AA22-277A: Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization

AA22-277A: Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization 10/04/2022 01:58 PM EDT Original release date: October 4, 2022 Summary Actions to Help Protect Against Russian State-Sponsored Malicious Cyber Activity: • Enforce multifactor authentication (MFA) on all user accounts.• Implement network segmentation to separate network segments based on role …

Continue reading “AA22-277A: Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization”

CISA and NSA Publish Open Radio Access Network Security Considerations

CISA and NSA Publish Open Radio Access Network Security Considerations 09/15/2022 09:52 AM EDT Original release date: September 15, 2022 CISA and the National Security Agency (NSA) have published Open Radio Access Network Security Considerations. This product—generated by the Enduring Security Framework (ESF) Open Radio Access Network (RAN) Working Panel, a subgroup within the cross-sector …

Continue reading “CISA and NSA Publish Open Radio Access Network Security Considerations”

#StopRansomware: MedusaLocker

#StopRansomware: MedusaLocker 06/30/2022 01:00 PM EDT Original release date: June 30, 2022 CISA, the Federal Bureau of Investigation (FBI), the Department of the Treasury (Treasury), and the Financial Crimes Enforcement Network (FinCEN) have released a joint Cybersecurity Advisory (CSA), #StopRansomware: MedusaLocker, to provide information on MedusaLocker ransomware. MedusaLocker actors target vulnerabilities in Remote Desktop Protocol …

Continue reading “#StopRansomware: MedusaLocker”

People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices

People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices 06/07/2022 06:00 PM EDT Original release date: June 7, 2022 CISA, the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory (CSA) to provide information on ways in which People’s Republic of China (PRC) state-sponsored …

Continue reading “People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices”

Strengthening Cybersecurity of SATCOM Network Providers and Customers

03/17/2022 01:28 PM EDT Original release date: March 17, 2022 CISA and the Federal Bureau of Investigation (FBI) are aware of possible threats to U.S. and international satellite communications (SATCOM) networks. Successful intrusions into SATCOM networks could create additional risk for SATCOM network customer environments. In response, CISA and FBI have published joint Cybersecurity Advisory …

Continue reading “Strengthening Cybersecurity of SATCOM Network Providers and Customers”

NSA Releases Network Infrastructure Security Guidance

NSA Releases Network Infrastructure Security Guidance 03/03/2022 12:22 PM EST Original release date: March 3, 2022 The National Security Agency (NSA) has released a new Cybersecurity Technical Report (CTR): Network Infrastructure Security Guidance. The report captures best practices based on the depth and breadth of experience in supporting customers and responding to threats. Recommendations include …

Continue reading “NSA Releases Network Infrastructure Security Guidance”

NSA Best Practices for Selecting Cisco Password Types

NSA Best Practices for Selecting Cisco Password Types 02/17/2022 11:41 AM EST Original release date: February 17, 2022 The National Security Agency (NSA) has released a Cybersecurity Information (CSI) sheet with guidance on securing network infrastructure devices and credentials. Cisco devices are used globally to secure network infrastructure devices, including across the Department of Defense, …

Continue reading “NSA Best Practices for Selecting Cisco Password Types”

CISA Publishes Infographic on Layering Network Security Through Segmentation

CISA Publishes Infographic on Layering Network Security Through Segmentation 01/24/2022 09:59 AM EST Original release date: January 24, 2022 CISA has published an infographic to emphasize the importance of implementing network segmentation—a physical or virtual architectural approach that divides a network into multiple segments, each acting as its own subnetwork, to provide additional security and …

Continue reading “CISA Publishes Infographic on Layering Network Security Through Segmentation”