DHS Launches New Critical Infrastructure Security and Resilience Campaign

November 8, 2023 at 12:15PM The DHS, CISA, and FEMA have launched a new campaign called Shields Ready to help critical infrastructure organizations enhance their security and resilience. It complements the existing campaign called Shields Up and covers cyberattacks, physical security threats, and natural disasters. The initiative aims to encourage organizations to strengthen resilience and … Read more

Hackers use Citrix Bleed flaw in attacks on govt networks worldwide

November 1, 2023 at 02:49PM Threat actors are targeting government, technical, and legal organizations globally by exploiting the ‘Citrix Bleed’ vulnerability (CVE-2023-4966) in Citrix NetScaler ADC and Gateway appliances. The attacks have been ongoing since August 2023 and involve credential theft and lateral movement. The attacks are difficult to detect due to limited forensic evidence. … Read more

How to Keep Your Business Running in a Contested Environment

October 27, 2023 at 08:00AM Organizations must prioritize cybersecurity and establish comprehensive plans for preparation, mitigation, and response to potential threats. Fidelis Security offers solutions for compliance management, continuous monitoring and threat detection, vulnerability management, insider threat mitigation, incident response and recovery planning. They also offer the Fidelis Challenge to showcase their threat detection capabilities. … Read more

Key Learnings from “Big Game” Ransomware Campaigns

October 26, 2023 at 12:21PM A recent report on crypto crime found that ransomware attacks are increasing in prevalence, targeting major industries such as casinos, manufacturing, retail, and technology. Organizations must take specific steps to address these attacks, including understanding the threat, identifying internal signs of attack, and strengthening infrastructure. Utilizing threat intelligence and effective … Read more

The Cybersecurity Resilience Quotient: Measuring Security Effectiveness

October 25, 2023 at 09:21AM The Cybersecurity Resilience Quotient (CRQ) is a proposed industry-wide metric to assess and improve organizations’ cybersecurity resilience. It goes beyond traditional metrics by considering factors such as asset criticality, exposure, vulnerability, risk tolerance, architecture defensibility, business process vulnerabilities, and incident response preparedness. The CRQ can be used for benchmarking, risk … Read more

Critical Infrastructure Stakeholders Gather for Day 2 of SecurityWeek’s 2023 ICS Cybersecurity Conference

October 25, 2023 at 09:21AM SecurityWeek’s 2023 ICS Cybersecurity Conference in Atlanta continues today with industrial cybersecurity stakeholders gathering for Day 2. Highlights include an interactive tabletop exercise for incident response, discussions on converging IT/OT security operations, assessing insider threats, securing industrial wireless infrastructure, emulating adversary actions, quantum computing’s impact on OT security, and using … Read more

1Password confirms attacker tried to pull list of admin users after Okta intrusion

October 24, 2023 at 11:21AM 1Password has confirmed that it was attacked by cyber criminals following a breach of Okta’s customer support portal. The attack was detected on September 29 and the company’s incident response team quickly engaged, finding a suspicious IP address and unauthorized access to the Okta instance. While no user data or … Read more

Top 6 Mistakes in Incident Response Tabletop Exercises

October 17, 2023 at 10:03AM A tabletop exercise is a discussion-based practice that simulates a cybersecurity incident response. It is important to take a social approach during the exercise and include various participants from different teams. It is also crucial to vary the threat types used in the exercise to ensure preparedness. The scenario should … Read more