Tag Archives: advanced persistent threat

CISA, FBI, USCYBEROM Issue Warning on ‘Kimsuky’ North Korean-Backed Hacking Group

Advanced

The FBI, Cybersecurity and Infrastructure Security Agency (CISA) and U.S. Cyber Command Cyber National Mission Force (CNMF) have issued a joint advisory to warn the public of a North Korean-linked hacking group called Kimsuky. CISA, FBI and CNMF utilized data from intelligence reporting and open-source databases to consolidate Kimsuky's tactics, techniques and procedures (TTP).

Read More »

CISA, FBI Issue Joint Advisory on Threat Actors Targeting Federal, State, Local IT Networks

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have warned that advanced persistent threat actors are exploiting legacy vulnerabilities in internet-facing infrastructure devices to gain access to networks of federal and state, local, tribal and territorial government agencies. "Vulnerability chaining exploits multiple vulnerabilities in the course of a single intrusion to compromise a network or application,” CISA and FBI stated.

Read More »

Ron Ross: NIST Awaits OMB Approval of Special Publication 800-53 Revision 5

blank

Ron Ross, a National Institute of Standards and Technology fellow, said NIST is waiting for the Office of Management and Budget’s office of information and regulatory affairs to finish its final review and approve Special Publication 800-53, revision 5 to begin soliciting public comments on six cybersecurity documents, Federal News Network reported Tuesday.

Read More »

DoD’s Operational Test & Evaluation Report Assesses Pentagon’s Cybersecurity Posture

blank

A new report by the Department of Defense’s office of the director for operational test and evaluation showed that cyber red teams found greater difficulty in breaching defenses of DoD networks. “These improvements are both noteworthy and encouraging, but we estimate that the rate of these improvements is not outpacing the growing capabilities of potential adversaries, who continue to find new vulnerabilities and techniques to counter the fixes and countermeasures by DOD defenders,” according to DOT&E’s fiscal 2018 cybersecurity report.

Read More »

Georgia Tech to Help DARPA, AFRL Study Data Transfer Security

blank

The Defense Advanced Research Projects Agency and Air Force Research Laboratory have awarded $4.2 million to Georgia Tech’s College of Computing to support research on how to secure data transfers. Georgia Tech said Thursday the four-year “Theia” project aims to track the movement of data between computers and Internet hosts to determine if malicious code …

Read More »