Tag #Cisa

Showing 1 to 12 of 13 results

nbcnews.com

🌐 85% Global Worthiness

Aug 2, 04:14

Arizona election website hacked; Secretary of State keeps feds in the dark

Arizona's election website was hacked in June 2024, with hackers replacing candidate photos; the state's Secretary of State chose not to inform federal agencies due to concerns about political interference, highlighting a breakdown in cybersecurity cooperation and election security under the Trump a...

Arizona election website hacked; Secretary of State keeps feds in the dark

Arizona's election website was hacked in June 2024, with hackers replacing candidate photos; the state's Secretary of State chose not to inform federal agencies due to concerns about political interference, highlighting a breakdown in cybersecurity cooperation and election security under the Trump a...

Progress

48% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How did the Trump administration's policies contribute to the current state of cybersecurity cooperation and election security in the United States?

Fontes's decision to withhold information from federal agencies highlights growing concerns about cybersecurity cooperation and election security, particularly following cuts to federal election security programs and the politicization of Homeland Security under the Trump administration. This lack of communication, experts warn, could lead to more and more severe election-related hacks.

forbes.com

🌐 85% Global Worthiness

May 10, 19:10

FBI and CISA Warn of Unsophisticated Hacker Attacks on U.S. Critical Infrastructure

The FBI and CISA issued a joint warning on May 6th about unsophisticated hackers targeting U.S. energy and transportation systems, exploiting poor cyber hygiene to cause operational disruptions and potential physical damage, urging infrastructure owners to immediately improve security practices.

FBI and CISA Warn of Unsophisticated Hacker Attacks on U.S. Critical Infrastructure

The FBI and CISA issued a joint warning on May 6th about unsophisticated hackers targeting U.S. energy and transportation systems, exploiting poor cyber hygiene to cause operational disruptions and potential physical damage, urging infrastructure owners to immediately improve security practices.

Progress

52% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

Why are unsophisticated cyberattacks causing concern for U.S. critical infrastructure, despite the existence of more advanced threats?

The agencies' alert emphasizes the significant consequences of even simple attacks on critical infrastructure. By exploiting easily preventable weaknesses like default passwords and open internet connections, these hackers cause operational disruptions and potential physical damage, illustrating the importance of basic cybersecurity measures.

forbes.com

🌐 90% Global Worthiness

Mar 13, 16:12

FBI and CISA Issue Joint Alert on Medusa Ransomware, Recommend Immediate 2FA Enablement

The FBI and CISA issued a joint cybersecurity advisory on March 12th warning about the Medusa ransomware group, which has targeted at least 300 critical infrastructure organizations since June 2021, recommending 2FA for webmail and VPNs as an immediate mitigation step.

FBI and CISA Issue Joint Alert on Medusa Ransomware, Recommend Immediate 2FA Enablement

The FBI and CISA issued a joint cybersecurity advisory on March 12th warning about the Medusa ransomware group, which has targeted at least 300 critical infrastructure organizations since June 2021, recommending 2FA for webmail and VPNs as an immediate mitigation step.

Progress

44% Bias Score

ShareSaveArticle

No Poverty

12345678

Previous 1 of 8 Next

What immediate actions should organizations take to mitigate Medusa ransomware attacks?

The FBI and CISA issued a joint alert on March 12th warning about the Medusa ransomware group, which has impacted at least 300 victims in the critical infrastructure sector since June 2021. The alert recommends enabling two-factor authentication (2FA) for webmail (Gmail, Outlook), VPNs, and critical system accounts, alongside strong passwords and regular security updates.

forbes.com

🌐 90% Global Worthiness

Feb 20, 19:11

FBI Warns of Ghost Ransomware Exploiting Unpatched Vulnerabilities

A joint FBI and CISA advisory warns of the Ghost ransomware group, operating out of China, exploiting unpatched vulnerabilities in software like Fortinet FortiOS, Adobe ColdFusion, Microsoft SharePoint, and Exchange (ProxyShell) to deploy ransomware across 70+ countries, differing from typical phish...

FBI Warns of Ghost Ransomware Exploiting Unpatched Vulnerabilities

A joint FBI and CISA advisory warns of the Ghost ransomware group, operating out of China, exploiting unpatched vulnerabilities in software like Fortinet FortiOS, Adobe ColdFusion, Microsoft SharePoint, and Exchange (ProxyShell) to deploy ransomware across 70+ countries, differing from typical phish...

Progress

52% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

What are the long-term implications of the Ghost ransomware campaign for cybersecurity practices and infrastructure?

The Ghost ransomware campaign's success underscores the critical need for organizations to prioritize timely patching and network segmentation. Failure to address known vulnerabilities leaves organizations vulnerable to this sophisticated and widespread attack vector, potentially leading to significant data loss and operational disruption. The reliance on exploiting publicly known vulnerabilities rather than phishing suggests a shift in ransomware tactics.

forbes.com

🌐 85% Global Worthiness

Jan 18, 04:06

Noem's CISA Restructuring: A Return to Technical Focus Amidst Hybrid Threat Concerns

Kristi Noem's confirmation as CISA director signals a return to core technical cybersecurity, eliminating involvement in disinformation and election interference; however, this contradicts a recent executive order expanding CISA's mission, potentially leaving gaps in national security.

Noem's CISA Restructuring: A Return to Technical Focus Amidst Hybrid Threat Concerns

Kristi Noem's confirmation as CISA director signals a return to core technical cybersecurity, eliminating involvement in disinformation and election interference; however, this contradicts a recent executive order expanding CISA's mission, potentially leaving gaps in national security.

Progress

40% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How does Noem's proposed restructuring of CISA interact with President Biden's recent executive order expanding the agency's responsibilities?

Noem's plan directly responds to concerns about CISA's expanding mandate and potential budget constraints. By streamlining operations and focusing on technical expertise, she aims to improve efficiency and strengthen core cybersecurity defenses. This approach, however, risks diminishing CISA's role in combating disinformation and state-sponsored propaganda, potentially weakening the nation's response to hybrid threats.

forbes.com

🌐 85% Global Worthiness

Jan 16, 22:06

Biden's Last-Minute Cybersecurity Order: A Roadmap or a Minefield?

President Biden's January 16, 2025 executive order mandates wide-ranging cybersecurity improvements across federal systems and the private sector by imposing multiple deadlines within 90-240 days, raising concerns about its timing and potential impact on the incoming Trump administration.

Biden's Last-Minute Cybersecurity Order: A Roadmap or a Minefield?

President Biden's January 16, 2025 executive order mandates wide-ranging cybersecurity improvements across federal systems and the private sector by imposing multiple deadlines within 90-240 days, raising concerns about its timing and potential impact on the incoming Trump administration.

Progress

56% Bias Score

ShareSaveArticle

Industry, Innovation, and Infrastructure

12345678

Previous 1 of 8 Next

What are the potential long-term consequences of politicizing cybersecurity through such a late-stage, broadly scoped executive order?

This eleventh-hour executive order may be strategically designed to constrain the incoming Trump administration, potentially hindering the Department of Governmental Efficiency's (DOGE) agenda and solidifying CISA's role. The compressed timelines and broad scope risk ineffective implementation, leaving agencies vulnerable and potentially fueling political division.

forbes.com

🌐 90% Global Worthiness

Jun 6, 16:13

FBI, CISA Warn of Surge in Play Ransomware Attacks

The FBI and CISA issued a joint cybersecurity advisory warning about a sharp increase in Play ransomware attacks in May, affecting 900 organizations across various sectors, exploiting vulnerabilities in multiple systems, and using sophisticated techniques for lateral movement.

FBI, CISA Warn of Surge in Play Ransomware Attacks

The FBI and CISA issued a joint cybersecurity advisory warning about a sharp increase in Play ransomware attacks in May, affecting 900 organizations across various sectors, exploiting vulnerabilities in multiple systems, and using sophisticated techniques for lateral movement.

Progress

48% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How are the Play ransomware attackers gaining initial access and moving laterally within victim networks?

This significant increase in Play ransomware attacks highlights the evolving tactics of the threat actors, likely linked to the North Korean group Andariel and the Balloonfly group. Exploiting vulnerabilities in Windows, Microsoft Exchange Server, and Fortinet's FortiOS, the attackers gain access through RDP and VPNs, then leverage tools like Cobalt Strike and Mimikatz for lateral movement.

forbes.com

🌐 90% Global Worthiness

Mar 22, 19:10

FBI, CISA Urge 2FA Activation Amidst Medusa Ransomware Attacks

The FBI and CISA issued a joint advisory (AA25-071A) urging immediate activation of two-factor authentication for all webmail and VPN accounts due to over 300 Medusa ransomware attacks since 2021; researchers discovered that these attacks use a "bring-your-own-vulnerable driver" method to disable an...

FBI, CISA Urge 2FA Activation Amidst Medusa Ransomware Attacks

The FBI and CISA issued a joint advisory (AA25-071A) urging immediate activation of two-factor authentication for all webmail and VPN accounts due to over 300 Medusa ransomware attacks since 2021; researchers discovered that these attacks use a "bring-your-own-vulnerable driver" method to disable an...

Progress

36% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

What immediate actions should enterprises take to mitigate the risk of Medusa ransomware attacks, given the recent advisory and the newly discovered attack vector?

The FBI and CISA issued a joint advisory urging two-factor authentication (2FA) for webmail and VPN accounts due to ongoing attacks using Medusa ransomware. Medusa, a ransomware-as-a-service platform, has affected over 300 victims since 2021, highlighting the urgent need for enhanced security measures. This advisory, AA25-071A, emphasizes the importance of 2FA for protecting critical systems.

gr.euronews.com

🌐 85% Global Worthiness

Mar 12, 10:11

US Cuts Cybersecurity Funding, Raising Election Security Concerns

The United States has slashed millions of dollars from two cybersecurity initiatives, including one supporting state and local election officials, prompting concerns about election security and foreign interference, especially with CISA's ongoing review and over a dozen employees placed on leave.

US Cuts Cybersecurity Funding, Raising Election Security Concerns

The United States has slashed millions of dollars from two cybersecurity initiatives, including one supporting state and local election officials, prompting concerns about election security and foreign interference, especially with CISA's ongoing review and over a dozen employees placed on leave.

Progress

40% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

What are the potential long-term implications of these funding cuts and personnel changes for the security of U.S. elections?

The cuts to cybersecurity initiatives and the CISA review could significantly impact the ability of state and local election officials to defend against cyberattacks and foreign interference in future elections. The lack of a confirmed CISA director further exacerbates these concerns, leaving a critical agency overseeing U.S. infrastructure security without permanent leadership.

abcnews.go.com

🌐 85% Global Worthiness

Feb 11, 04:08

CISA Election Security Staff Placed on Leave, Jeopardizing 2024 Election Preparations

Seventeen U.S. Cybersecurity and Infrastructure Security Agency (CISA) employees, including ten regional election security specialists, were placed on administrative leave, jeopardizing election security support for state and local election offices nationwide ahead of the 2024 election, amid critici...

CISA Election Security Staff Placed on Leave, Jeopardizing 2024 Election Preparations

Seventeen U.S. Cybersecurity and Infrastructure Security Agency (CISA) employees, including ten regional election security specialists, were placed on administrative leave, jeopardizing election security support for state and local election offices nationwide ahead of the 2024 election, amid critici...

Progress

36% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How does the political context surrounding CISA's future affect election security efforts?

The CISA staff placed on leave played a vital role in building relationships with election officials across all 50 states and over 8,000 local jurisdictions. Their work included providing training on election security, assessing physical security measures, and combating foreign interference in elections. This disruption comes amidst criticism of CISA from Republicans and the Trump administration, questioning the agency's future.

abcnews.go.com

🌐 85% Global Worthiness

Jan 16, 04:09

CISA's Election Security Role Faces Political Opposition

Jen Easterly, outgoing head of the U.S. Cybersecurity and Infrastructure Security Agency (CISA), voiced concern over the agency's future election security role amid Republican calls to reduce or eliminate its responsibilities, highlighting successful collaborations and the increasing threat of forei...

CISA's Election Security Role Faces Political Opposition

Jen Easterly, outgoing head of the U.S. Cybersecurity and Infrastructure Security Agency (CISA), voiced concern over the agency's future election security role amid Republican calls to reduce or eliminate its responsibilities, highlighting successful collaborations and the increasing threat of forei...

Progress

36% Bias Score

ShareSaveArticle

Peace, Justice, and Strong Institutions

12345678

Previous 1 of 8 Next

How has CISA's work with state and local election officials been affected by political polarization?

CISA's election security work, initiated after Russia's 2016 election interference, has faced political opposition. This opposition, led by figures like Senator Rand Paul, stems from concerns about CISA's power and role, despite Easterly's assertion of successful collaborations and threat mitigation efforts. This opposition highlights the politicization of cybersecurity and election integrity.

forbes.com

🌐 85% Global Worthiness

Dec 18, 22:09

CISA Mandates Enhanced Security Measures for U.S. Officials

CISA issued new cybersecurity guidance for U.S. officials, mandating end-to-end encrypted communication apps like Signal and FIDO phishing-resistant authentication, eliminating SMS for 2FA due to security vulnerabilities, following the Salt Typhoon infiltration.

CISA Mandates Enhanced Security Measures for U.S. Officials

CISA issued new cybersecurity guidance for U.S. officials, mandating end-to-end encrypted communication apps like Signal and FIDO phishing-resistant authentication, eliminating SMS for 2FA due to security vulnerabilities, following the Salt Typhoon infiltration.

Progress

48% Bias Score

ShareSaveArticle

No Poverty

12345678

Previous 1 of 8 Next

Why does CISA strongly discourage the use of SMS for two-factor authentication and what alternative methods are recommended?

The new guidelines highlight the vulnerability of SMS to interception and emphasize the importance of strong authentication methods to protect against sophisticated attacks. The advice underscores the need for multi-layered security measures, including device-level security and careful app permission management, particularly for high-value targets.

Showing 1 to 12 of 13 results