nsa – Page 9 – WindowsTechs.com

Interview with the Head of the NSA’s Research Directorate

Posted on February 3, 2022 by Bruce Schneier

MIT Technology Review published an interview with Gil Herrera, the new head of the NSA’s Research Directorate. There’s a lot of talk about quantum computing, monitoring 5G networks, and the problems of big data:

The math department, often in conjunction with the computer science department, helps tackle one of NSA’s most interesting problems: big data. Despite public reckoning over mass surveillance, NSA famously faces the challenge of collecting such extreme quantities of data that, on top of legal and ethical problems, it can be nearly impossible to sift through all of it to find everything of value. NSA views the kind of “vast access and collection” that it talks about internally as both an achievement and its own set of problems. The field of data science aims to solve them…

Continue reading Interview with the Head of the NSA’s Research Directorate→

Exposing a Currently Active Free Rogue VPN Domains Portfolio Courtesy of the NSA – An OSINT Analysis

Posted on January 27, 2022 by Dancho Danchev

Note: This OSINT analysis has been originally published at my current employer’s Web site – https://whoisxmlapi.com where I’m currently acting as a DNS Threat Researcher since January, 2021.We’ve recently came across to a currently active free VPN… Continue reading Exposing a Currently Active Free Rogue VPN Domains Portfolio Courtesy of the NSA – An OSINT Analysis→

The dangers behind wildcard certificates: What enterprises need to know

Posted on October 27, 2021 by Help Net Security

With the National Security Agency recently issuing guidance on the risks associated with wildcard TLS certificates and Application Layer Protocols Allowing Cross-Protocol Attacks (ALPACA) techniques, it has many organizations and enterprise leaders won… Continue reading The dangers behind wildcard certificates: What enterprises need to know→

CISA – Ransomware targeted SCADA systems of 3 US water facilities

Posted on October 15, 2021 by Deeba Ahmed

By Deeba Ahmed
US has warned of more ransomware attacks on IT and OT networks of country’s Water and Wastewater Systems (WWS) Sector facilities.
This is a post from HackRead.com Read the original post: CISA – Ransomware targeted SCADA systems of … Continue reading CISA – Ransomware targeted SCADA systems of 3 US water facilities→

FBI, CISA warn water facility operators of ongoing malicious cyber activity

Posted on October 14, 2021 by AJ Vicens

Ransomware attackers are continuing to target water and wastewater facilities, U.S. intelligence and law enforcement officials warned in a new bulletin based on incidents in five states. A cybersecurity advisory published Thursday from the FBI, the Cybersecurity Infrastructure and Security Agency, the Environmental Protection Agency, and the National Security Agency highlighted incidents in five states between March of 2019 and August 2021, where systems were targeted by either ransomware attacks or other hacks. In one case, a former employee of a Kansas-based facility tried to “threaten drinking water safety by using his user credentials…to remotely access a facility computer,” according to the alert. Other incidents occurred in California, Maine, Nevada, and New Jersey. The notice pointed to “ongoing malicious cyber activity — both by known and unknown actors,” targeting information technology and operational technology networks, systems, and devices. “Recent ransomware incidents and ongoing threats demonstrate why all critical infrastructure owners and […]

The post FBI, CISA warn water facility operators of ongoing malicious cyber activity appeared first on CyberScoop.

Continue reading FBI, CISA warn water facility operators of ongoing malicious cyber activity→

Huntress launches endpoint protection capabilities to defend SMBs from cyberattacks

Posted on October 13, 2021 by Industry News

Huntress launched a series of platform enhancements designed to protect small and midsize businesses (SMBs) from modern cyberthreats. The release includes the general availability of the company’s Managed Antivirus (AV) service, new host isolation capa… Continue reading Huntress launches endpoint protection capabilities to defend SMBs from cyberattacks→

ARMO adds MITRE ATT&CK framework to its open-source Kubernetes testing tool

Posted on October 13, 2021 by Industry News

ARMO released an expanded version Kubescape, an open-source testing tool for Kubernetes environments that is compliant with the standards set forth in the Kubernetes Hardening Guidance released by the NSA and CISA. Kubescape is one of the fastest-growi… Continue reading ARMO adds MITRE ATT&CK framework to its open-source Kubernetes testing tool→

Hardening Your VPN

Posted on September 30, 2021 by Bruce Schneier

The NSA and CISA have released a document on how to harden your VPN.
Continue reading Hardening Your VPN→

NSA, CISA Release Guidelines to Secure VPNs

Posted on September 29, 2021 by Deeba Ahmed

By Deeba Ahmed
The NSA and CISA have published guidelines to secure virtual private networks (VPNs) as threat actors have been exploiting VPN vulnerabilities.
This is a post from HackRead.com Read the original post: NSA, CISA Release Guidelines to Secu… Continue reading NSA, CISA Release Guidelines to Secure VPNs→

IriusRisk expands its Technical Advisory Board with three new members

Posted on September 22, 2021 by Industry News

IriusRisk has added three new members to its Technical Advisory Board to help inform the development of its automated threat modeling platform and address the software security challenges facing its customers. Dr. Laurie Williams, Aaron Bedra and Dr. M… Continue reading IriusRisk expands its Technical Advisory Board with three new members→