Pergi ke luar talian dengan aplikasi Player FM !
CISA Alert AA22-137A – Weak security controls and practices routinely exploited for initial access.
Manage episode 354338047 series 3444271
This joint cybersecurity advisory was coauthored by the cybersecurity authorities of the US, Canada, New Zealand, the Netherlands, and the UK. Cyber actors routinely exploit poor security configurations, weak controls, and other poor cyber hygiene practices to gain initial access or as part of other tactics to compromise a victim’s system. This joint Cybersecurity Advisory identifies commonly exploited controls and practices, and includes best practices to mitigate these risks.
AA22-137A Alert, Technical Details, and Mitigations
White House Executive Order on Improving the Nation’s Cybersecurity
NCSC-NL Factsheet: Prepare for Zero Trust
NCSC-NL Guide to Cyber Security Measures
N-able Blog: Intrusion Detection System (IDS): Signature vs. Anomaly-Based
NCSC-NL Guide to Cyber Security Measures
National Institute of Standards and Technology SP 800-123 – Keeping Servers Secured
NCSC-UK Guidance – Phishing Attacks: Defending Your Organisation
Open Web Application Security Project (OWASP) Proactive Controls: Enforce Access Controls
All organizations should report incidents and anomalous activity to CISA’s 24/7 Operations Center at central@cisa.dhs.gov or (888) 282-0870 and to the FBI via your local FBI field office or the FBI’s 24/7 CyWatch at (855) 292-3937 or CyWatch@fbi.gov.
Learn more about your ad choices. Visit megaphone.fm/adchoices
52 episod
Manage episode 354338047 series 3444271
This joint cybersecurity advisory was coauthored by the cybersecurity authorities of the US, Canada, New Zealand, the Netherlands, and the UK. Cyber actors routinely exploit poor security configurations, weak controls, and other poor cyber hygiene practices to gain initial access or as part of other tactics to compromise a victim’s system. This joint Cybersecurity Advisory identifies commonly exploited controls and practices, and includes best practices to mitigate these risks.
AA22-137A Alert, Technical Details, and Mitigations
White House Executive Order on Improving the Nation’s Cybersecurity
NCSC-NL Factsheet: Prepare for Zero Trust
NCSC-NL Guide to Cyber Security Measures
N-able Blog: Intrusion Detection System (IDS): Signature vs. Anomaly-Based
NCSC-NL Guide to Cyber Security Measures
National Institute of Standards and Technology SP 800-123 – Keeping Servers Secured
NCSC-UK Guidance – Phishing Attacks: Defending Your Organisation
Open Web Application Security Project (OWASP) Proactive Controls: Enforce Access Controls
All organizations should report incidents and anomalous activity to CISA’s 24/7 Operations Center at central@cisa.dhs.gov or (888) 282-0870 and to the FBI via your local FBI field office or the FBI’s 24/7 CyWatch at (855) 292-3937 or CyWatch@fbi.gov.
Learn more about your ad choices. Visit megaphone.fm/adchoices
52 episod
Alle afleveringen
×

1 CISA Alert AA23-158A – #StopRansomware: CL0P Ransomware Gang Exploits CVE-2023-34362 MOVEit Vulnerability. 2:41

1 CISA Alert AA23-144A – People's Republic of China state-sponsored cyber actor living off the land to evade detection. 2:43



1 CISA Alert AA23-108A – APT28 exploits known vulnerability to carry out reconnaissance and deploy malware on Cisco routers. 2:45

1 CISA Alert AA23-074A – Threat actors exploit progress telerik vulnerability in U.S. government IIS server. 2:48

1 CISA Alert AA23-059A – CISA red team shares key findings to improve monitoring and hardening of networks. 2:46

1 CISA Alert AA23-040A – #StopRansomware: ransomware attacks on critical infrastructure fund DPRK malicious cyber activities. 3:01


1 CISA Alert AA23-025A – Protecting against malicious use of remote monitoring and management software 2:41

1 CISA Alert AA22-320A – Iranian government-sponsored APT actors compromise federal network, deploy crypto miner, credential harvester. 2:49

1 CISA Alert AA22-279A – Top CVEs actively exploited by People’s Republic of China state-sponsored cyber actors. 2:37

1 CISA Alert AA22-277A – Impacket and exfiltration tool used to steal sensitive information from defense industrial base organization. 2:54

1 CISA Alert AA22-264A – Iranian state actors conduct cyber operations against the government of Albania. 3:09

1 CISA Alert AA22-257A – Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations. 2:31

1 CISA Alert AA22-228A – Threat actors exploiting multiple CVEs against Zimbra Collaboration suite. 2:31

1 Update 1 to CISA Alert AA22-174A – Malicious cyber actors continue to exploit Log4Shell in VMware Horizon systems. 3:32

1 CISA Alert AA22-187A – North Korean state-sponsored cyber actors use Maui ransomware to target the healthcare and public health sector. 2:58
Selamat datang ke Player FM
Player FM mengimbas laman-laman web bagi podcast berkualiti tinggi untuk anda nikmati sekarang. Ia merupakan aplikasi podcast terbaik dan berfungsi untuk Android, iPhone, dan web. Daftar untuk melaraskan langganan merentasi peranti.