Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
The National Security Agency (NSA) published guidance to help Department of Defense (DoD) and other system administrators identify and mitigate security issues associated with a transition to Internet Protocol version 6 (IPv6). IPv6 Security Guidance highlights how several security issues can surface in networks that are new to IPv6, or in early phases of the […]
Continue ReadingAn unauthenticated remote code execution flaw (CVE-2022-27518) is being leveraged by a Chinese state-sponsored group to compromise Citrix Application Delivery Controller (ADC) deployments, the US National Security Agency has warned. “Targeting Citrix ADCs can facilitate illegitimate access to targeted organizations by bypassing normal authentication controls.” About CVE-2022-27518 CVE-2022-27518 stems from the vulnerable devices’ software failing […]
Continue ReadingChina accuses the United States of conducting tens of thousands of cyberattacks on its country, including cyberespionage campaigns. The Government of Beijing accused the United States of launching tens of thousands of cyberattacks on China. The attacks aimed at stealing sensitive data from government entities and universities. In the past, the US Government has accused […]
Continue ReadingOn this April 2022 Patch Tuesday, Microsoft has released patches for 128 CVE-numbered vulnerabilities, including one zero-day exploited in the wild (CVE-2022-24521) and another (CVE-2022-26904) for which there’s already a PoC and a Metasploit module. Vulnerabilities of note CVE-2022-24521 is a vulnerability in the Windows Common Log File System Driver that was reported to Microsoft […]
Continue ReadingKSOC announced that their platform satisfies the Kubernetes hardening guidelines issued by the National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA). The newly released guidelines recommend the following mitigation measures: scan environments for vulnerabilities and misconfigurations; monitor privileged access control, use network separation; limit network connectivity; deploy strong authorization and authentication; capture […]
Continue ReadingThe Federal Bureau of Investigation (FBI), Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA), and National Security Agency (NSA) have joined forces to publish a joint warning that Russian hackers have targeted defence contractors to steal sensitive data. According to an advisory issued by the US authorities, Russian state-sponsored hackers have been regularly […]
Continue ReadingDragos has announced initiatives with the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) to strengthen security and visibility for United States critical infrastructure through Dragos’s Neighborhood Keeper, which provides real-time sharing of intelligence across ICS/OT networks. Originally developed with the support of an award from the U.S. Department of Energy […]
Continue ReadingBy Deeba Ahmed US has warned of more ransomware attacks on IT and OT networks of country’s Water and Wastewater Systems (WWS) Sector facilities. This is a post from HackRead.com Read the original post: CISA – Ransomware targeted SCADA systems of 3 US water facilities Source: hack read com
Continue ReadingBy Deeba Ahmed The NSA and CISA have published guidelines to secure virtual private networks (VPNs) as threat actors have been exploiting VPN vulnerabilities. This is a post from HackRead.com Read the original post: NSA, CISA Release Guidelines to Secure VPNs Source: hack read com
Continue ReadingThe U.S. CISA and the NSA agencies have published guidance for securely using virtual private network (VPN) solutions. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance for increasing the security of virtual private network (VPN) solutions. Multiple attacks against private organizations and government entities, especially during […]
Continue Reading