critical infrastructure

  1. AA20-106A: Guidance on the North Korean Cyber Threat

    Original release date: April 15, 2020 | Last revised: June 23, 2020 Summary The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat for the international...
    • News
    • Thread
    • awareness critical infrastructure cryptojacking cyber threat cybercrime cybersecurity digital currency dprk espionage extortion financial theft government hidden cobra international cooperation malware mitigations network defense north korea ransomware sanctions
    • Replies: 0
    • Forum: Security Alerts

  2. AA20-006A: Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad

    Original release date: January 6, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection of our Nation’s critical infrastructure in light of the current tensions...
    • News
    • Thread
    • apt techniques cisa cisa recommendations critical infrastructure cyber defense cyber threats cybersecurity data theft ddos attacks incident response iranian cyber irgc malware mitigation strategies network monitoring phishing security best practices threat intelligence user training vulnerability management
    • Replies: 0
    • Forum: Security Alerts

  3. U.K. Cyber Security Center Says Most Attacks From Hostile States

    In the organization’s second annual report, published Tuesday, Chief Executive Officer Ciaran Martin wrote he’s in “little doubt” the U.K. will be victim of a “Category One Attack” on critical national infrastructure in the future, highlighting Russia as one of the states most likely to launch...
    • News
    • Thread
    • annual report attacks ciaran martin critical infrastructure cyber security hostile states national security russia u.k.
    • Replies: 1
    • Forum: Live RSS Feeds

  4. Trusted Cyber Physical Systems looks to protect your critical infrastructure from modern threats in the world of IoT

    This solution seeks to provide end-to-end security that is resilient to today’s cyber-attacks so our industrial customers can operate their critical infrastructures with confidence and with no negative impact to their intellectual property and customer experience. As the Internet of Things...
    • News
    • Thread
    • arm trustzone cloud security compliance control systems critical infrastructure cyber security data protection end-to-end security execution environment hardware isolation intel sgx iot malware microsoft patch management risk management secure protocols trusted systems trustworthiness zero trust
    • Replies: 0
    • Forum: Live RSS Feeds

  5. TA18-106A: Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices

    Original release date: April 16, 2018 Systems Affected Generic Routing Encapsulation (GRE) Enabled Devices Cisco Smart Install (SMI) Enabled Devices Simple Network Management Protocol (SNMP) Enabled Network Devices Overview This joint Technical Alert (TA) is the result of analytic efforts...
    • News
    • Thread
    • command and control critical infrastructure cybersecurity dhs espionage exploitation fbi hacking indicators of compromise infrastructure international security legacy protocols malware mitigation network devices russian actors smart install snmp telnet tftp
    • Replies: 0
    • Forum: Security Alerts

  6. TA18-074A: Russian Government Cyber Activity Targeting Energy and Other Critical Infrastructure Sectors

    Original release date: March 15, 2018 Systems Affected Domain Controllers File Servers Email Servers Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This alert...
    • News
    • Thread
    • critical infrastructure cyber kill chain cybersecurity dhs email security energy sector fbi incident response indicators of compromise industrial control systems intrusion detection malicious activity malware network security remote access russian government spear phishing technical alert threat actors watering hole attack
    • Replies: 0
    • Forum: Security Alerts

  7. TA13-175A: Risks of Default Passwords on the Internet

    Original release date: June 24, 2013 Systems Affected Any system using password authentication accessible from the internet may be affected. Critical infrastructure and other important embedded systems, appliances, and devices are of particular concern. Overview Attackers can easily...
    • News
    • Thread
    • access control authentication change passwords critical infrastructure default passwords embedded systems incident activity internet risks iot security malware network access operational security password management password policies remote access scanning tools security shodan unique passwords vulnerability
    • Replies: 0
    • Forum: Security Alerts

  8. TA13-175A: Risks of Default Passwords on the Internet

    Original release date: April 10, 2013 | Last revised: June 24, 2013 Systems Affected Any system using password authentication accessible from the internet may be affected. Critical infrastructure and other important embedded systems, appliances, and devices are of particular concern...
    • News
    • Thread
    • access control authentication critical infrastructure default passwords embedded systems firmware security industrial control systems iot security metasploit multi-factor authentication network access network equipment password change password management public keys remote access router security security risks shodan vulnerability scanners
    • Replies: 0
    • Forum: Security Alerts

  9. TA13-024A: Content Management Systems Security and Associated Risks

    Original release date: January 24, 2013 | Last revised: February 06, 2013 Systems Affected Web-based Content Management Systems, specifically Joomla! installations. Overview This Alert was developed as a collaborative effort between Public Safety Canada and the U.S. Link...
    • News
    • Thread
    • automated attacks best practices content management critical infrastructure cyber security ddos attacks installation joomla nist open source owasp password policy patching security monitoring server security ssl certificates user accounts user permissions vulnerabilities web security
    • Replies: 0
    • Forum: Security Alerts