Saturday, October 16, 2021

Subscribers Only

Free

CISA Releases Insider Threat Self-Assessment Tool, Keeps Rumor Control Online

The Cybersecurity and Infrastructure Security Agency has released the Insider Risk Mitigation Self-Assessment Tool, to help organizations assess their risk for insider threats, and better understand the nature of such threats. The tool asks users a series of questions, and offers feedback that helps measure cybersecurity risk posture. The tool assesses whether an organization has […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CISA Issues Security Advisory for Chinese Camera Company Hikvision

The Cybersecurity and Infrastructure Security Agency has issued a security advisory about a vulnerability in networked cameras made by the Chinese company Hikvision, which could allow attackers to take control of them. CISA urges users to install patches from the manufacturer. Use of Hikvision equipment by federal agencies was banned by the 2018 NDAA, a […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Coast Guard Begins Direct Commissioning of Cyber Officers

On September 24, the Coast Guard began directly commissioning specialists into its cyber command as officers, for roles in cyberspace operations, cybersecurity, information assurance, and cyber threat intelligence. The program will start with small numbers, initially selecting candidates from the service’s enlisted ranks. External candidates “must be proven cyber professionals with robust work experience,” age […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CISA Publishes Draft Guidance on TIC 3.0 and IPv6 Addressing

CISA’s Trusted Internet Connections 3.0 program has been updated to support IPv6, the current-generation internet addressing system that – once fully implemented – will enable end-to-end visibility between any two nodes, among other new capabilities that will be advantageous – even necessary – as the internet develops. CISA‘s guidance attempts to align the security objectives and […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

DHS, FBI Face Ransomware Questions from Congress

During a hearing of the House Homeland Security Committee, FBI Director Christopher Wray and Secretary of Homeland Security Alejandro Mayorkas were questioned about the...

Feds Warn of Increasing Conti Ransomware Attacks

CISA, the FBI, and the NSA are urging organizations to update their software and implement multi-factor authentication to protect against increasing attacks from Conti’s ransomware-as-a-service. The group primarily runs “double extortion” campaigns: encrypting systems and threatening to sell the data. Conti clients have historically targeted critical infrastructure, including the defense industrial base. Recent high-profile victims […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

FBI, CISA, and Coast Guard Warn of Vulnerability in Password Manager

The FBI, CISA, and Coast Guard Cyber Command have issued a joint warning about the ongoing “active exploitation” of a “critical” vulnerability in a popular password management solution: Indian tech company Zoho’s ManageEngine ADSelfService Plus. Zoho released a patch for the vulnerability on September 6. The agencies advise that the vulnerability “poses a serious risk […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CISA Can Improve Efforts to Ensure Dam Security and Resilience

The DHS Office of Inspector General conducted an audit to determine to what extent CISA’s oversight has improved Dams Sector security and resilience since it took up that responsibility in 2018. OIG notes that recent dam failures in California and Michigan, and widespread flooding in the Midwest have highlighted a need for oversight and guidance. […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

House Subcommittees Approve Cybersecurity Funds for CISA, FTC

The House Homeland Security Committee has approved an additional $865 million in funding for the Cybersecurity and Infrastructure Security Agency, voting along party lines...

House Bill Would Give CISA Director a Stable 5-Year Term

The CISA Leadership Act, sponsored by a bipartisan group of House members, seeks to better insulate the director of CISA from political pressure by giving the position a defined five-year term which would potentially span presidential administrations. It would still be appointed by the president, with Senate confirmation. The bill was introduced by Andrew Garbarino […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.