Tag Archives: NSA

CISA, NSA, FBI Warn of Surge in Conti Ransomware Attacks; Eric Goldstein Quoted

Eric Goldstein

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA) and the FBI have released an advisory saying they have observed more than 400 cyberattacks against U.S. and international organizations using Conti ransomware. NSA, CISA and FBI are recommending several measures to mitigate the risk of Conti ransomware attacks. 

Read More »

Gilbert Herrera Returns to NSA as Research Director

Gilbert Herrera

Gilbert Herrera, a nearly four-decade veteran of Sandia National Laboratories (SNL) and member of the U.S. National Quantum Initiative Advisory Committee (NQIAC), has rejoined the National Security Agency (NSA) to serve as research director. He will oversee a directorate responsible for developing technologies intended to support the agency's signals intelligence and cybersecurity operations, NSA said Thursday in a LinkedIn post.

Read More »

NSA & CISA Jointly Provide Guidance on Kubernetes Security

Kubernetes Hardening

The National Security Agency (NSA) partnered with the Cybersecurity and Infrastructure Security Agency (CISA) to provide guidance on Kubernetes, an open-source automation system used for containerized applications. The agencies' Kubernetes Hardening Guidance report tackles threats to Kubernetes and offers risk reduction practices, NSA said Tuesday.

Read More »

NSA’s Jason Wang: Intelligence Community to Need AI in the Future

Artificial Intelligence

Jason Wang, technical director of the National Security Agency's (NSA) Computer and Analytic Sciences Research Group, said he predicts the intelligence community will need artificial intelligence to protect U.S. networks in the future. Wang said at a virtual event on July 12th that intelligence community components need to pursue more partnerships to maximize capabilities against adversaries. 

Read More »

U.S. Government, Allies Link Microsoft Exchange Hack to China

Cybersecurity

The U.S. government and allies, including the U.K., European Union and NATO, have attributed the Microsoft Exchange Server (MSS) and other malicious cyber activities to threat actors with ties to China’s ministry of state security. Cyber actors linked to China’s MSS used zero-day vulnerabilities in Exchange Server to perform “cyber espionage operations."

Read More »

David Ziska: NSA Program Offers Pre-Vetted Commercial Tech Products for Classified Telework

David Ziska

The U.S. Army and the Air Force Research Laboratory (AFRL) have turned to a National Security Agency (NSA) program to obtain pre-vetted platforms designed to secure classified government data in remote environments. David Ziska, deputy director of NSA's Commercial Solutions for Classified program, said the CSfC inventory has 22 categories across multiple product lines with most of the offerings already familiar to customer agencies.

Read More »

NIST Seeks to Improve Software Supply Chain Security With Two Guidelines

Critical Software

The National Institute of Standard and Technology (NIST) has issued two documents meant to improve the integrity and security of the software supply chain in accordance with an executive order seeking to strengthen U.S. cybersecurity. NIST developed the two documents by hosting virtual workshops and seeking position papers to seek feedback and insights from the public.

Read More »

Joint Advisory Sheds Light on Russian Intell Agency’s Brute Force Cyber Campaign

Ransomware

The FBI, National Security Agency, Cybersecurity and Infrastructure Security Agency and the U.K. government’s national cybersecurity center have issued a joint advisory on a brute force campaign by Russian military intelligence against U.S. and foreign organizations. The brute force capability enables threat actors to gain access to email and other protected data and identify valid account credentials through password guessing and other extensive login attempts.

Read More »

Gen. Paul Nakasone: Navy-Marine Corps Integration Needed to Counter Cyberattacks

Gen. Paul Nakasone

Gen. Paul Nakasone, head of U.S. Cyber Command and a 2021 Wash100 Award recipient, said cybersecurity is national security and the U.S. Navy and the U.S. Marine Corps must be ready to address cyberattacks. “Continuing Navy-Marine Corps integration must account for the information environment, especially adversary intrusions, information operations and next-gen cryptography,” said Nakasone. 

Read More »

Mitre Releases NSA-Funded Cyber Defense Framework

Cybersecurity

The National Security Agency (NSA) has announced a Mitre-developed framework designed to bolster the cyber resilience of national security systems, as well as the defense industrial base. The NSA-funded D3FEND framework provides defensive countermeasures that cybersecurity professionals can use against common cyberattacks. Interested cybersecurity professionals may contract Mitre to submit feedback on the D3FEND framework via this link. 

Read More »