The GTARC R&D project will address the most pressing gap in the current trustmark framework—the lack of mature software tools to support the framework’s primary use-cases such as emergency communications interoperability. Keep Reading
A bipartisan group of senators on Friday introduced legislation that would establish a federally funded program to put in place state cybersecurity leaders nationwide, increasing the ability of states to respond to cyberattacks. Keep Reading
Through this research-and-development (R&D) project, SecuLore will use predictive analytics and collect cyber data to determine whether these resources can be used to improve the detection and elimination of cybersecurity attacks against emergency communications systems. Keep Reading
The Insights bulletin notes that Iran has targeted a variety of industries and organizations in the past, and said CISA "is monitoring the intelligence information" in the wake of "heightened geopolitical tensions." Keep Reading
“One of my top three priorities” will be “modernizing all of our data systems, tools, AI, and analytics,” Bryan S. Ware, CISA’s assistant director for cybersecurity said Tuesday in some of his first public remarks since being tapped for the role. Keep Reading
DHS’s Cybersecurity and Infrastructure Security Agency (CISA) subsequently released an emergency directive on Tuesday afternoon requiring all agencies to implement Microsoft’s patch by Jan. 29. Keep Reading
Among the vulnerabilities patched were critical weaknesses in Windows CryptoAPI and Windows Remote Desktop Protocol (RDP) server and client. An attacker could remotely exploit these vulnerabilities to decrypt, modify, or inject data on user connections. Keep Reading
A remote, unauthenticated attacker may be able to compromise a vulnerable VPN server. The attacker may be able to gain access to all active users and their plain-text credentials. Keep Reading
BMAP noted that "physical attacks continue to include the possibility of improvised explosive device (IED) attacks, which are a staple tactic of the Islamic Revolutionary Guard, Quds Force, and proxy entities such as Hizbollah." Keep Reading
Steps include disabling all unnecessary ports and protocols, enhancing monitoring of network and email traffic, patching externally facing equipment, limiting usage of PowerShell, and ensuring backups are up to date. Keep Reading
