Hot Topics

CISA.gov

CSRB executive order remote workforce

First CSRB Report Tackles on Ongoing Log4j Risk

| | CISA.gov, CSRB, Cyber Safety Review Board, executive order, Log4j
The Log4j vulnerabilities discovered in 2021 continue to pose significant risks to organizations worldwide. The Cyber Safety Review Board (CSRB) released a series of recommendations aimed at addressing that risk and underscoring ...
Security Boulevard
CISA risk CMMC Understanding the Power of SOAR for Government

House Passes ICS Cybersecurity Training Act

| | cisa, CISA Advisory Committee, CISA.gov, ICS, industrial controls
In a predominantly bipartisan vote, the Industrial Control Systems Cybersecurity Training Act was passed by the House of Representatives on the evening of June 21, 2022. The bill, sponsored by Representative Eric ...
Security Boulevard
CISA Call with Critical Infrastructure Partners on Potential Russian Cyberattacks Against the U.S.

Russia’s Invasion of Ukraine and CISA/FBI’s New Era of Transparency

| | CISA.gov, cyber, Dragonfly, FBI, Havex, ICS, Russia, triton
BLUF: Bottom Line Up FrontI want to start this post with the most important thing right up top:The CISA.gov/Shields-Up page starts with this statement.  PLEASE take it seriously, and escalate to your ...
CyberCrime & Doing Time
cyberthreats Russian Group-IB EU Russia Project Lakhta’s Accountant

CISA, NSA Warn of Russian Attacks on Critical Infrastructure

| | Advanced persistent threat (APT), CISA.gov, CSA, nsa, Russia, Russian hackers
After threat actors linked to Russia used multiple techniques to attack a wide variety of U.S. targets, the FBI, CISA and the NSA issued a joint warning to those tasked with protecting ...
Security Boulevard
BlackByte Stormous Ransomware

US Treasury Again Threatens to Sanction Ransomware Victims

| | CISA.gov, Cybersecurity, data backup, Ransomware
On September 21, 2021, the U.S. Treasury Department’s Office of Foreign Asset Control (OFAC) published an updated advisory to advise those who pay ransom to unknown threat actors who have stolen or ...
Security Boulevard
budget open source supply chain cybersecurity ransomware White House Cyber Ops

Google, Apple, Microsoft go to Washington Cybersecurity Summit

| | aws, CISA.gov, Cybersecurity, google, Microsoft, NIST
The White House met Wednesday with numerous high-profile private sector and education leaders to discuss the wide-ranging efforts needed to address cybersecurity threats. Among those present were Microsoft chief executive Satya Nadella, ...
Security Boulevard
vulnerabilities advisory

U.S., UK and Australia Issue Joint Cybersecurity Advisory

| | advisory, Australian Cyber Security Centre, CISA.gov, uk, US-CERT, vulnerability
As vulnerabilities are discovered, advisories are issued, remedies and mitigations are shared and then the onus is on the end user and/or company to do what’s necessary to close the window into ...
Security Boulevard
information cybercriminals EO nation-state Developing Nations Cybercrime

Enterprises in the Crosshairs of Nation-State Attacks

| | attacks on enterprises, CISA.gov, Cybersecurity, nation-states
In a recently released report sponsored by HP, Nation States, Cyberconflict and the Web of Profit, Dr. Mike McGuire, senior lecturer in criminology at the University of Surrey, claims a 100% rise ...
Security Boulevard

Iranian APT Group Overview

| | APT, CISA.gov, CrowdStrike, Iran, Iranian hackers
Today the Birmingham InfraGard Chapter and the Alabama ISSA held a joint meeting featuring a presentation from the Cybersecurity & Infrastructure Security Agency, part of DHS that was formerly known as the ...
CyberCrime & Doing Time

Cloud Workload Resilience PulseMeter

Step 1 of 8

How do you define cloud resiliency for cloud workloads? (Select 3)(Required)