Security News

Joint NSA and CISA Guidance on Strengthening Cyber Defense Through Protective DNS

2 days 13 hours ago
Original release date: March 4, 2021

The National Security Agency (NSA) and CISA have released a Joint Cybersecurity Information (CSI) sheet with guidance on selecting a protective Domain Name System (PDNS) service as a key defense against malicious cyber activity. Protective DNS can greatly reduce the effectiveness of ransomware, phishing, botnet, and malware campaigns by blocking known-malicious domains. Additionally organizations can use DNS query logs for incident response and threat hunting activities.

CISA encourages users and administrators to consider the benefits of using a protective DNS service and review NSA and CISA’s CSI sheet on Selecting a Protective DNS Service for more information.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA

Cybersecurity threats highlighted

1 week ago

Danial Norjidi As with the rise of any technology and its use for industrial development, there are bound to be misapplications and misuse, said Minister of Transport and Infocommunications Dato Seri Setia Awang Abdul Mutalib bin Pehin Orang Kaya Seri Setia Dato Paduka Haji Mohd Yusof. “The utilisation of big data presents cybersecurity threats and […]

Borneo Bulletin Online

gp

CISA Releases Joint Cybersecurity Advisory on Exploitation of Accellion File Transfer Appliance

1 week 3 days ago
Original release date: February 24, 2021

The cybersecurity authorities of Australia, New Zealand, Singapore, the United Kingdom, and the United States have released Joint Cybersecurity Advisory AA21-055A: Exploitation of Accellion File Transfer Appliance. Cyber actors worldwide have exploited vulnerabilities in Accellion File Transfer Appliance to attack multiple federal, and state, local, tribal, and territorial government organizations as well as private industry organizations in the medical, legal, telecommunications, finance, and energy fields. In some instances, the attacker extorted money from victim organizations to prevent public release of information exfiltrated from a compromised Accellion appliance.

CISA encourages users and administrators to review AA21-055A: Exploitation of Accellion File Transfer Appliance and MAR-10325064-1.v1 – Accellion FTA for more information.

This product is provided subject to this Notification and this Privacy & Use policy.

CISA