CISA

Exposed: Russian military Unit 29155 does digital sabotage, espionage

CISA, cyber espionage, cyber sabotage, cyber war, cybercriminals, disruption, Don't miss, hacker, Hot stuff, Justice Department, NATO, News, Russian Federation, Ukraine, USA /

Exposed: Russian military Unit 29155 does digital sabotage, espionage 2024-09-06 at 17:01 By Zeljka Zorz The US Department of Justice has named five Russian computer hackers as members of Unit 29155 – i.e., the 161st Specialist Training Center of the Russian General Staff Main Intelligence Directorate (GRU) – which they deem resposible for the 2022 […]

React to this headline:

Loading spinner

Exposed: Russian military Unit 29155 does digital sabotage, espionage Read More »

Halliburton Confirms Data Stolen in Cyberattack

CISA, data breach, Halliburton, RansomHub, Ransomware /

Halliburton Confirms Data Stolen in Cyberattack 2024-09-03 at 23:16 By Ryan Naraine The US oil giant updated an SEC filing to confirm malicious hackers “accessed and exfiltrated information” from its corporate systems. The post Halliburton Confirms Data Stolen in Cyberattack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Halliburton Confirms Data Stolen in Cyberattack Read More »

How RansomHub went from zero to 210 victims in six months

CISA, Don't miss, FBI, Hot stuff, News, Ransomware /

How RansomHub went from zero to 210 victims in six months 2024-08-30 at 15:16 By Zeljka Zorz RansomHub, a ransomware-as-a-service (RaaS) outfit that “popped up” earlier this year, has already amassed at least 210 victims (that we know of). Its affiliates have hit government services, IT and communication companies, healthcare institutions, financial organizations, emergency services,

React to this headline:

Loading spinner

How RansomHub went from zero to 210 victims in six months Read More »

US Sees Iranian Hackers Working Closely With Ransomware Groups

CISA, Iran, Ransomware /

US Sees Iranian Hackers Working Closely With Ransomware Groups 2024-08-29 at 11:46 By Ionut Arghire Iranian state-sponsored APT Lemon Sandstorm is working closely with ransomware groups on monetizing network intrusions. The post US Sees Iranian Hackers Working Closely With Ransomware Groups appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

US Sees Iranian Hackers Working Closely With Ransomware Groups Read More »

Pioneer Kitten: Iranian hackers partnering with ransomware affiliates

CISA, cyber espionage, Don't miss, FBI, Iran, News, Ransomware /

Pioneer Kitten: Iranian hackers partnering with ransomware affiliates 2024-08-28 at 19:46 By Zeljka Zorz A group of Iranian hackers – dubbed Pioneer Kitten by cybersecurity researchers – is straddling the line between state-contracted cyber espionage group and initial access provider (and partner in crime) for affiliates of several ransomware groups. “The FBI assesses these actors

React to this headline:

Loading spinner

Pioneer Kitten: Iranian hackers partnering with ransomware affiliates Read More »

US, Allies Release Guidance on Event Logging and Threat Detection

CISA, Government, guidance, logs /

US, Allies Release Guidance on Event Logging and Threat Detection 2024-08-23 at 15:01 By Ionut Arghire Government agencies in the US and allied countries have released guidance on how organizations can define a baseline for event logging best practices. The post US, Allies Release Guidance on Event Logging and Threat Detection appeared first on SecurityWeek.

React to this headline:

Loading spinner

US, Allies Release Guidance on Event Logging and Threat Detection Read More »

CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding

CISA, Government /

CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding 2024-08-20 at 14:16 By Eduard Kovacs Clark Construction has been tasked with building the 630,000 square foot sustainable state-of-the-art facility for CISA. The post CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding appeared

React to this headline:

Loading spinner

CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding Read More »

Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities

CISA, Cisco, exploited, Vulnerabilities /

Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities 2024-08-09 at 15:01 By Eduard Kovacs CISA is warning organizations about abuse of Cisco Smart Install feature, as Cisco is notifying customers about critical phone vulnerabilities it’s not patching. The post Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities Read More »

Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’

CISA, CISO Strategy, cloud security, CSRB, Google Cloud, Government, Regulations /

Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’ 2024-07-30 at 18:48 By Ryan Naraine SecurityWeek fireside chat: Google Cloud CISO on CISA’s secure-by-design initiatives, government regulations, holding vendors accountable, and transformational security leadership. The post Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’ appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’ Read More »

Progress Patches Critical Telerik Report Server Vulnerability

CISA, CVE-2024-6327, ICS/OT, Progress Software, Telerik Report Server, Vulnerabilities /

Progress Patches Critical Telerik Report Server Vulnerability 2024-07-26 at 17:46 By Ionut Arghire Progress Software calls attention to a critical remote code execution flaw in the Telerik Report Server product. The post Progress Patches Critical Telerik Report Server Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Progress Patches Critical Telerik Report Server Vulnerability Read More »

CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency

Application Security, attack surface management, CISA, Government, Incident Response, red team, spear-phishing /

CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency 2024-07-12 at 17:31 By Ionut Arghire CISA says a SILENTSHIELD red team assessment found gaping holes in the security posture of a federal civilian executive branch organization. The post CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency appeared first on SecurityWeek.

React to this headline:

Loading spinner

CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency Read More »

Chinese APT40 group swifly leverages public PoC exploits

APT, Australia, China, CISA, Don't miss, Hot stuff, News, PoC, web application, web shell /

Chinese APT40 group swifly leverages public PoC exploits 2024-07-09 at 14:46 By Zeljka Zorz Chinese state-sponsored cyber group APT40 is amazingly fast at adapting public proof-of-concept (PoC) exploits for vulnerabilities in widely used software, an advisory released by intelligence and cybersecurity agencies from eight countries warns. The group, which is also known as Kryptonite Panda

React to this headline:

Loading spinner

Chinese APT40 group swifly leverages public PoC exploits Read More »

US, Allies Warn of Memory Unsafety Risks in Open Source Software

Application Security, CISA, guidance, open source, source code /

US, Allies Warn of Memory Unsafety Risks in Open Source Software 2024-06-27 at 17:01 By Ionut Arghire Most critical open source software contains code written in a memory unsafe language, US, Australian, and Canadian government agencies warn. The post US, Allies Warn of Memory Unsafety Risks in Open Source Software appeared first on SecurityWeek. This

React to this headline:

Loading spinner

US, Allies Warn of Memory Unsafety Risks in Open Source Software Read More »

Personal and Chemical Facility Information Potentially Accessed in CISA Hack

CISA, data breach, Data Breaches /

Personal and Chemical Facility Information Potentially Accessed in CISA Hack 2024-06-21 at 13:46 By Ionut Arghire CISA says CFATS program data was likely accessed after an Ivanti Connect Secure appliance was hacked in January. The post Personal and Chemical Facility Information Potentially Accessed in CISA Hack appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Personal and Chemical Facility Information Potentially Accessed in CISA Hack Read More »

US, Allies Publish Guidance on Securing Network Access

CISA, guidance, Network Security /

US, Allies Publish Guidance on Securing Network Access 2024-06-19 at 15:50 By Ionut Arghire Government agencies in the US, New Zealand, and Canada have published new guidance on improving network security. The post US, Allies Publish Guidance on Securing Network Access appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

US, Allies Publish Guidance on Securing Network Access Read More »

CISA Conducts First AI Cyber Incident Response Exercise

AI, Artificial Intelligence, CISA, Incident Response /

CISA Conducts First AI Cyber Incident Response Exercise 2024-06-17 at 17:16 By Ionut Arghire The US cybersecurity agency CISA has conducted a tabletop exercise with the private sector focused on AI cyber incident response. The post CISA Conducts First AI Cyber Incident Response Exercise appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

CISA Conducts First AI Cyber Incident Response Exercise Read More »

Unpacking CISA’s AI guidelines

Artificial Intelligence, Axonius, CISA, cybersecurity, Don't miss, Government, guidelines, Hot stuff, policy, Video /

Unpacking CISA’s AI guidelines 2024-06-07 at 07:01 By Help Net Security CISA’s late April AI and infrastructure guidelines address 16 sectors along with their cybersecurity needs and operations concerning the growth of AI as a tool to build both federal and vendor cybersecurity infrastructure in the federal marketplace. In this Help Net Security video, Tom

React to this headline:

Loading spinner

Unpacking CISA’s AI guidelines Read More »

Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919)

0-day, Check Point, CISA, CVE, Don't miss, enterprise, Hot stuff, News, Rapid7, WatchTowr /

Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919) 2024-05-31 at 14:32 By Zeljka Zorz Attackers have been exploiting CVE-2024-24919, a zero-day vulnerability in Check Point Security Gateways, to pinpoint and extract password hashes for local accounts, which they then used to move laterally in the target organizations’ network. “The vulnerability is particularly critical

React to this headline:

Loading spinner

Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919) Read More »

HHS pledges $50M for autonomous vulnerability management solution for hospitals

CISA, Don't miss, healthcare, Horizon3.ai, Hot stuff, News, patching, Ransomware, vulnerability management /

HHS pledges $50M for autonomous vulnerability management solution for hospitals 2024-05-23 at 10:18 By Zeljka Zorz As organizations in the healthcare sector continue to be a prime target for ransomware gangs and CISA warns about a vulnerability (CVE-2023-43208) in a healthcare-specific platform being leveraged by attackers, the Advanced Research Projects Agency for Health (ARPA-H) has

React to this headline:

Loading spinner

HHS pledges $50M for autonomous vulnerability management solution for hospitals Read More »

Google Cites ‘Monoculture’ Risks in Response to CSRB Report on Microsoft

CISA, cloud security, CSRB, Google Cloud, Government, Microsoft, Nation-State /

Google Cites ‘Monoculture’ Risks in Response to CSRB Report on Microsoft 2024-05-20 at 22:01 By Ryan Naraine Google is invoking the ‘monoculture’ word in response to a scathing U.S. government report on Microsoft’s inadequate cybersecurity practices. The post Google Cites ‘Monoculture’ Risks in Response to CSRB Report on Microsoft appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Google Cites ‘Monoculture’ Risks in Response to CSRB Report on Microsoft Read More »

Scroll to Top