Tag: CISA
-
Alerts: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/29/jcdcs-industry-government-collaboration-speeds-mitigation-crowdstrike-it-outage Source: Alerts Title: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage Feedly Summary: CISA, through the Joint Cyber Defense Collaborative (JCDC), enabled swift, coordinated response and information sharing in the wake of a significant IT outage caused by a CrowdStrike software update. This outage, which impacted government, critical infrastructure, and industry…
-
Alerts: CISA Releases Three Industrial Control Systems Advisories
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/29/cisa-releases-three-industrial-control-systems-advisories Source: Alerts Title: CISA Releases Three Industrial Control Systems Advisories Feedly Summary: CISA released three Industrial Control Systems (ICS) advisories on October 29, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-303-01 Siemens InterMesh Subscriber Devices ICSA-24-303-02 Solar-Log Base 15 ICSA-24-303-03 Delta Electronics InfraSuite Device…
-
The Register: Feds investigate China’s Salt Typhoon amid campaign phone hacks
Source URL: https://www.theregister.com/2024/10/28/feds_investigate_chinas_salt_typhoon/ Source: The Register Title: Feds investigate China’s Salt Typhoon amid campaign phone hacks Feedly Summary: ‘They’re taunting us,’ investigator says and it looks like it’s working The feds are investigating Chinese government-linked cyberspies breaking into the infrastructure of US telecom companies, as reports suggest Salt Typhoon – the same crew believed to…
-
CSA: Cloud Security Best Practices from CISA & NSA
Source URL: https://www.tenable.com/blog/cisa-and-nsa-cloud-security-best-practices-deep-dive Source: CSA Title: Cloud Security Best Practices from CISA & NSA Feedly Summary: AI Summary and Description: Yes Summary: Recent guidance on cloud security from CISA and NSA outlines five key best practices designed to enhance security in cloud environments, including identity and access management, key management practices, network segmentation, data security,…
-
Alerts: Cisco Releases Security Bundle for Cisco ASA, FMC, and FTD Software
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/24/cisco-releases-security-bundle-cisco-asa-fmc-and-ftd-software Source: Alerts Title: Cisco Releases Security Bundle for Cisco ASA, FMC, and FTD Software Feedly Summary: Cisco released its October 2024 Semiannual Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication to address vulnerabilities in Cisco ASA, FMC, and FTD. A cyber threat actor could exploit some of these vulnerabilities to…
-
Alerts: CISA Adds Two Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/24/cisa-adds-two-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Two Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-20481 Cisco ASA and FTD Denial-of-Service Vulnerability CVE-2024-37383 RoundCube Webmail Cross-Site Scripting (XSS) Vulnerability These types of vulnerabilities are frequent attack vectors for malicious…
-
Alerts: CISA, US, and International Partners Release Joint Guidance to Assist Software Manufacturers with Safe Software Deployment Processes
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/24/cisa-us-and-international-partners-release-joint-guidance-assist-software-manufacturers-safe Source: Alerts Title: CISA, US, and International Partners Release Joint Guidance to Assist Software Manufacturers with Safe Software Deployment Processes Feedly Summary: Today, CISA—along with U.S. and international partners—released joint guidance, Safe Software Deployment: How Software Manufacturers Can Ensure Reliability for Customers. This guide aids software manufacturers in establishing secure software deployment processes…
-
The Register: Warning! FortiManager critical vulnerability under active attack
Source URL: https://www.theregister.com/2024/10/23/fortimanager_critical_vulnerability/ Source: The Register Title: Warning! FortiManager critical vulnerability under active attack Feedly Summary: Security shop and CISA urge rapid action Fortinet has gone public with news of a critical flaw in its software management platform.… AI Summary and Description: Yes Summary: The text discusses a critical security vulnerability in Fortinet’s FortiManager control…