NSA publishes IPv6 Security Guidance

The National Security Agency (NSA) published guidance to help Department of Defense (DoD) and other system administrators identify and mitigate security issues associated with a transition to Internet Protocol version 6 (IPv6). IPv6 Security Guidance highlights how several security issues can surface in networks that are new to IPv6, or in early phases of the […]

Continue Reading

State-sponsored attackers actively exploiting RCE in Citrix devices, patch ASAP!

An unauthenticated remote code execution flaw (CVE-2022-27518) is being leveraged by a Chinese state-sponsored group to compromise Citrix Application Delivery Controller (ADC) deployments, the US National Security Agency has warned. “Targeting Citrix ADCs can facilitate illegitimate access to targeted organizations by bypassing normal authentication controls.” About CVE-2022-27518 CVE-2022-27518 stems from the vulnerable devices’ software failing […]

Continue Reading

China accuses the US of cyberattacks

China accuses the United States of conducting tens of thousands of cyberattacks on its country, including cyberespionage campaigns. The Government of Beijing accused the United States of launching tens of thousands of cyberattacks on China. The attacks aimed at stealing sensitive data from government entities and universities. In the past, the US Government has accused […]

Continue Reading

Microsoft fixes actively exploited zero-day reported by the NSA (CVE-2022-24521)

On this April 2022 Patch Tuesday, Microsoft has released patches for 128 CVE-numbered vulnerabilities, including one zero-day exploited in the wild (CVE-2022-24521) and another (CVE-2022-26904) for which there’s already a PoC and a Metasploit module. Vulnerabilities of note CVE-2022-24521 is a vulnerability in the Windows Common Log File System Driver that was reported to Microsoft […]

Continue Reading

KSOC announces that its Kubernetes security platform supports hardening NSA/CISA guidelines

KSOC announced that their platform satisfies the Kubernetes hardening guidelines issued by the National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA). The newly released guidelines recommend the following mitigation measures: scan environments for vulnerabilities and misconfigurations; monitor privileged access control, use network separation; limit network connectivity; deploy strong authorization and authentication; capture […]

Continue Reading

U.S. government warns that sensitive data is being stolen from defence contractors

The Federal Bureau of Investigation (FBI), Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA), and National Security Agency (NSA) have joined forces to publish a joint warning that Russian hackers have targeted defence contractors to steal sensitive data. According to an advisory issued by the US authorities, Russian state-sponsored hackers have been regularly […]

Continue Reading

Dragos partners with NSA and CISA to increase OT cybersecurity for United States critical infrastructure

Dragos has announced initiatives with the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) to strengthen security and visibility for United States critical infrastructure through Dragos’s Neighborhood Keeper, which provides real-time sharing of intelligence across ICS/OT networks. Originally developed with the support of an award from the U.S. Department of Energy […]

Continue Reading

NSA, CISA release guidance on hardening remote access via VPN solutions

The U.S. CISA and the NSA agencies have published guidance for securely using virtual private network (VPN) solutions. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance for increasing the security of virtual private network (VPN) solutions. Multiple attacks against private organizations and government entities, especially during […]

Continue Reading