Russian cyber actors are targeting critical infrastructure networks worldwide. Follow the latest Cybersecurity Advisory from NSA and partners to harden your routers: https://t.co/LCHYZkN3rM #cybersecurity
The DOW’s contribution to America extends beyond the battlefield. For NSA, it extends to the digital realm. By safeguarding these frontiers, NSA helps preserve the freedoms that have been the hallmark of America for 250 years. #America250
A strong finish to #TechNetCyber. Daniel McCormack, Chief Operations Officer of NSA’s Cybersecurity Directorate, shared insights on the evolving cyber landscape, innovation, and the partnerships that help strengthen our collective defense. #CyberDefense
Malicious cyber threat actors are targeting internet-exposed ATG systems in the United States. Review our joint fact sheet for TTPs and recommendations to protect your systems. 👉 https://t.co/E4Gqkc7FUA
NSA’s ZIG webpage is now live! We are providing accessible resources for enhancing enterprise cybersecurity with Zero Trust. To learn more, visit the ZIG webpage.
https://t.co/MiIGiLhQAJ
NSA is releasing security design considerations for AI-driven automation leveraging MCP which, while simplifying the integration of diverse capabilities into powerful agent workflows, requires caution. Learn more: https://t.co/zn2DyUz5be
Better understand agentic AI systems and mitigate the cybersecurity risks using a new guide we authored with @ASDGovAu and others. View the joint report. #Cybersecurity#AgenticAI
https://t.co/3nOvJwMYdS
NSA joins the @NCSC and others in releasing joint guidance detailing multiple China-nexus threat actors who are using dynamic, external covert networks of botnets to facilitate malicious cyber activity strategically at scale. Read the report today!
https://t.co/IbHwKD1XEt
If you haven’t already, we encourage organizations using LEO SATCOM systems to review our recent guidance and deploy the recommended strategies to mitigate the unique cybersecurity challenges these systems face.
https://t.co/h86jq9NIAX
Iran-affiliated cyber actors are targeting operational technology devices across US critical infrastructure, including programmable logic controllers (PLCs). These attacks have led to diminished PLC functionality, manipulation of display data and, in some cases, operational disruption and financial loss.
The @FBI, @CISAGov, @NSAgov, @EPA, @ENERGY and @US_CYBERCOM are urging US organizations—especially municipalities and those in the water and energy sectors—to review the tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) detailed in this advisory. Applying the recommended mitigations will reduce the risk of compromise: https://t.co/A4l9U4Ky1b
Russian GRU cyber actors are exploiting vulnerable routers worldwide to intercept sensitive military, government, and critical infrastructure information.
The @FBI, @NSAgov and 21 international parties across 15 countries have released a #PSA detailing GRU techniques and providing defensive guidance.
We urge all network defenders and owners of small office/home office (SOHO) routers to update to the latest firmware versions, change default usernames and passwords, disable remote management interfaces from the internet, and stay alert for certificate warnings in web browsers and email clients. https://t.co/Zxn8J4buud
NSA supports @FBI PSA on Russian GRU cyber actors exploiting routers. Take action today to stay secure.
To learn more and for best practices, read NSA’s press release.
https://t.co/JMgFuSLL3U
#Cybersecurity#NSA#NetworkDefense#RouterSecurity
We are joining @ASDGovAu to highlight the key cybersecurity risks and corresponding mitigation strategies when using LEO SATCOM systems. To gain a better understanding of the risks and mitigations, view our joint report. #Cybersecurity
https://t.co/h86jq9NIAX
Malicious actors are exploiting Cisco Catalyst SD-WAN technology to access global networks. Review our new joint Hunt Guide for details on detections and mitigation techniques and take immediate action to reduce risks to your networks.
https://t.co/t4awBuiAkn
ZIG Phase 1 & Phase 2 are here! Review these ZIGs for information on how to map out maturing your networks’ ZT implementation to the Target level.
https://t.co/tImdPaTlo4
Today we’re releasing the first two reports in a series of Zero Trust Implementation Guidelines (ZIGs) to provide further guidance on implementing the activities required to achieve the DoW defined Target-level of ZT implementation. https://t.co/4wuDSmqTw4
Zero Trust starts with Discovery. The Discovery Phase provides foundational guidance to help organizations understand their environment in preparation for implementing Phase 1 & Phase 2.
https://t.co/oUxASbSGKw
Today we’re releasing the first two reports in a series of Zero Trust Implementation Guidelines (ZIGs) to provide further guidance on implementing the activities required to achieve the DoW defined Target-level of ZT implementation. https://t.co/4wuDSmqTw4
Improper Secure Boot configuration could be putting your organizations at a greater risk of exposure to threats. Our guidance outlines how to check for proper configuration and recover if needed. Review here!
🔗https://t.co/7ObsEutxa6
We recently published guidance on how to addresses challenges associated with Secure Boot configuration. If you’re a network defender or device owner who’s unclear on how Secure Boot interacts with other protective tech, read on.
🔗https://t.co/7ObsEusZky
If you haven’t yet, review the recent joint CSA for mitigation strategies to protect your organization’s OT control devices from attacks pro-Russia hacktivist groups are conducting against critical infrastructure.
🔗https://t.co/3N8MxuCGvq
Pro-Russia hacktivist groups are targeting virtual network computing connected human-machine interface devices to conduct opportunistic attacks on global critical infrastructure. Follow the advice in this new joint CSA to protect your organization. https://t.co/acoyL8IXgg