Items tagged with cisa

by Nathan Wasson - Thu, Jan 26, 2023

CISA Warns Of Heightened Hacking Threat Using Legit Remote Desktop Tools

Yesterday, the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) published a joint cybersecurity advisory warning network defenders about phishing attacks that leverage remote monitoring and management... Read more...

by Nathan Wasson - Tue, Dec 06, 2022

CISA Issues Directive To Patch This Exploited Chrome Flaw By December 26

Last week, Google began pushing out an update to its Chrome browser that fixes a critical security vulnerability in the browser’s JavaScript engine. Google noted in its blog post about the update that an exploit for this vulnerability is out in the wild. Then, on Monday, the Cybersecurity and Infrastructure Security... Read more...

by Nathan Wasson - Fri, Nov 18, 2022

FBI Advisory Warns Active Hive Ransomware Gang Has Extorted $100M And Counting

Two weeks ago, the Biden administration convened the second International Counter Ransomware Summit, warning that ransomware attacks are outpacing efforts to mitigate them. Now, the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Health and... Read more...

by Nathan Wasson - Mon, Oct 03, 2022

Ransomware Gang Bullies LA School District By Leaking Stolen Data

On September 5, Los Angeles Unified School District (LAUSD), the second largest school district in the United States, published a news release disclosing a ransomware attack on its internal systems. While LAUSD is far from the only school to have been hit by ransomware this year, the size of the school district has... Read more...

by Nathan Ord - Sun, Feb 20, 2022

Here’s CISA's List Of Free Cybersecurity Tools And A Security Checklist Everyone Should Know

This week, the Cybersecurity and Infrastructure Security Agency (CISA) published a “Free Cybersecurity Services and Tools” webpage outlining what can be done for security incidents, intrusions, preparation, and resilience against cyberattacks. This is intended to be a “one-stop resource where organizations of all... Read more...

by Nathan Wasson - Mon, Feb 07, 2022

CISA Urgently Warns To Patch This Active Security Flaw In Windows 11, 10 And Windows Server

We reported a week ago on a security vulnerability in Windows that multiple publicly available exploits can leverage to gain elevated privileges. We advised readers to apply the patch for this vulnerability as soon as possible, and now the Cybersecurity and Infrastructure Security Agency (CISA) is ordering federal... Read more...

by Zak Killian - Thu, Dec 23, 2021

Homeland Security Expands Its Hack DHS Bug Bounty As Log4j Threat Intensifies

If you're reading this, you probably don't need to be told that a "bug bounty" is a cash prize paid to security researchers that find a software exploit. Non-USians might need to be told that "DHS" refers to the United States Department of Homeland Security. "Hack DHS" is the bug bounty program run by the agency, and... Read more...

by Zak Killian - Tue, Dec 14, 2021

Here's Why The Log4j Security Vulnerability Has CISA Pressing The Panic Button

Even if you're from the U.S., you may not have heard of CISA. The Cybersecurity and Infrastructure Security Agency is part of the Department of Homeland Security, and it primarily handles technological threats to the nation. Well, CISA is still in the process of an all-hands red alert thanks to the Log4shell security... Read more...

by Paul Lilly - Tue, Nov 23, 2021

FBI And CISA Ring Holiday Ransomware Alarm And Urge Immediate Safety Precautions

This is the time of year for giving thanks, munching on fried turkey (you are frying it, right?) and delicious side dishes, and shopping bargains on gaming laptops, TVs, and everything else. It's also when ransomware and other digital crooks ramp up their efforts to ruin the holidays. As such, the Federal Bureau of... Read more...

by Tim Sweezy - Fri, Nov 05, 2021

CISA Tells OEM To Patch Alarming BrakTooth Security Flaws Affecting Billions Of Devices

The number of ways hackers can exploit security flaws seems endless these days. The Cybersecurity and Infrastructure Security Agency (CISA) expanded on one of those this week when it encouraged vendors, manufacturers, and developers to fast-track updating vulnerable Bluetooth SoC applications in regard to... Read more...

by Nathan Ord - Tue, Jul 20, 2021

U.S. Homeland Security Pushes New Cybersecurity Rules After Colonial Pipeline Attack

Earlier this year, the Colonial Pipeline ransomware incident crippled fuel delivery to the Eastern Seaboard, sending people into a panic and decreasing the supply of gas, if only briefly. Amazingly, this is only the first time something of this scale has happened, but hopefully, it will be the last. The Department of... Read more...

by Nathan Ord - Sun, May 09, 2021

Colonial Pipeline Ransomware Attack Highlights Alarming Security Vulnerabilities In Critical Infrastructure

One of the top U.S. fuel pipeline operators had to shutter its network this weekend due to a nasty ransomware attack. This effectively shut down approximately half of the East Coast’s fuel for both air and ground transportation. Though home heating oil prices are not expected to increase as a result, this does raise... Read more...

by Paul Lilly - Fri, Apr 02, 2021

U.S. Homeland Security Demands Government Agencies Patch Critical MS Exchange Flaws ASAP

Though Microsoft Exchange servers are quickly being patched, hackers have been ramping up their efforts to take advantage of the situation while they still can. As such, the United States Cybersecurity and Infrastructure Security Agency (CISA), a division of Homeland Security, has hardened its requirements for... Read more...

by Nathan Ord - Sun, Mar 14, 2021

Electromagnetic Pulse Attacks Are A Real Threat And The USAF Is Guarding Against Them

Nuclear bombs and electromagnetic pulses are heard about in pop culture, but is it a real threat in the modern era? A U.S Air Force base in Texas seems to think there is at least some risk and is surveying a facility to find anything vulnerable to EMP attacks. Officials at Joint Base San Antonio in Lackland, Texas... Read more...

by Nathan Ord - Thu, Mar 04, 2021

US Government Issues Emergency Patch Directive For Microsoft Exchange 0-Day Vulnerability

We reported yesterday that Microsoft patched four zero-day vulnerabilities affecting Microsoft Exchange servers. As it turns out, Chinese hackers exploited these vulnerabilities in the wild and seemingly managed to ensnare the U.S. Government. The Department of Homeland Security has now published an emergency... Read more...

by Brandon Hill - Tue, Jun 18, 2019

Homeland Security Joins NSA In Urging Windows Users To Patch BlueKeep Worm Vulnerability ASAP

Earlier this month, the National Security Agency (NSA) issued a warning to Windows users -- especially businesses running older versions of Windows -- to patch their systems against the BlueKeep wormable exploit. At the time, the NSA wrote, "NSA is concerned that malicious cyber actors will use the vulnerability in... Read more...

Items tagged with cisa

Login with Social Media or Manually