CISA.gov
Irony of Ironies: CISA Hacked — ‘by China’
Richi Jennings | | china, china espionage, Chinese, Chinese Communists, Chinese drive-by attack, chinese government, chinese hacker, Chinese hackers, Chinese state-sponsored hacking group, Chinese Threat Actors, CIRCIA, cisa, CISA.gov, CVE-2023-46805, CVE-2024-21887, CVE-2024-21893, Cyber Security and Infrastructure Security Agency, Cybersecurity & Infrastructure Security Agency, Cybersecurity and Infrastructure Agency, Data Stolen By China, federal agency, Ivanti, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti security, Ivanti Vulnerabilities, Ivanti Zero day vulnerability, Ligolo, Magnet Goblin, NerbianRAT, NSA/CISA, Peoples Republic of China, SB Blogwatch, Volt Typhoon, WARPWIRE
Free rides and traffic jams: U.S. Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti ...
Security Boulevard
First CSRB Report Tackles on Ongoing Log4j Risk
The Log4j vulnerabilities discovered in 2021 continue to pose significant risks to organizations worldwide. The Cyber Safety Review Board (CSRB) released a series of recommendations aimed at addressing that risk and underscoring ...
Security Boulevard
House Passes ICS Cybersecurity Training Act
In a predominantly bipartisan vote, the Industrial Control Systems Cybersecurity Training Act was passed by the House of Representatives on the evening of June 21, 2022. The bill, sponsored by Representative Eric ...
Security Boulevard
Russia’s Invasion of Ukraine and CISA/FBI’s New Era of Transparency
BLUF: Bottom Line Up FrontI want to start this post with the most important thing right up top:The CISA.gov/Shields-Up page starts with this statement. PLEASE take it seriously, and escalate to your ...
CISA, NSA Warn of Russian Attacks on Critical Infrastructure
After threat actors linked to Russia used multiple techniques to attack a wide variety of U.S. targets, the FBI, CISA and the NSA issued a joint warning to those tasked with protecting ...
Security Boulevard
US Treasury Again Threatens to Sanction Ransomware Victims
On September 21, 2021, the U.S. Treasury Department’s Office of Foreign Asset Control (OFAC) published an updated advisory to advise those who pay ransom to unknown threat actors who have stolen or ...
Security Boulevard
Google, Apple, Microsoft go to Washington Cybersecurity Summit
The White House met Wednesday with numerous high-profile private sector and education leaders to discuss the wide-ranging efforts needed to address cybersecurity threats. Among those present were Microsoft chief executive Satya Nadella, ...
Security Boulevard
U.S., UK and Australia Issue Joint Cybersecurity Advisory
Christopher Burgess | | advisory, Australian Cyber Security Centre, CISA.gov, uk, US-CERT, vulnerability
As vulnerabilities are discovered, advisories are issued, remedies and mitigations are shared and then the onus is on the end user and/or company to do what’s necessary to close the window into ...
Security Boulevard
Enterprises in the Crosshairs of Nation-State Attacks
In a recently released report sponsored by HP, Nation States, Cyberconflict and the Web of Profit, Dr. Mike McGuire, senior lecturer in criminology at the University of Surrey, claims a 100% rise ...
Security Boulevard
Iranian APT Group Overview
Today the Birmingham InfraGard Chapter and the Alabama ISSA held a joint meeting featuring a presentation from the Cybersecurity & Infrastructure Security Agency, part of DHS that was formerly known as the ...