The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint advisory recommending Immediate Actions to Reduce Exposure Across all Operational Technologies and Control Systems. The advisory warns of foreign cyber threat actors potentially targeting US critical infrastructure and provides “immediate steps to ensure resilience and safety of US systems should a time of crisis emerge in the near term.” It notes that “Legacy OT assets that were not designed to defend against malicious cyber activities, combined with readily available information that identifies OT assets connected via the Internet (e.g., Shodan1 [2], Kamerka [3]), are creating a “perfect storm” of 1) easy access to unsecured assets, 2) use of common, open-source information about devices, and 3) an extensive list of exploits deployable via common exploit frameworks…”
Experts Comments
Linkedin Message
@Evan Dornbush, CEO and Founder, provides expert commentary at @Information Security Buzz.
" The Advisory goes further still, offering a robust set of recommendations for executing a response strategy...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-advise-on-nsa-cisa-alert-on-foreign-hackers
Facebook Message
@Evan Dornbush, CEO and Founder, provides expert commentary at @Information Security Buzz.
" The Advisory goes further still, offering a robust set of recommendations for executing a response strategy...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-advise-on-nsa-cisa-alert-on-foreign-hackers
Linkedin Message
@Nilesh Dherange, CTO, provides expert commentary at @Information Security Buzz.
"Have resiliency, business continuity, and response plans in place and exercise them. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-advise-on-nsa-cisa-alert-on-foreign-hackers
Facebook Message
@Nilesh Dherange, CTO, provides expert commentary at @Information Security Buzz.
"Have resiliency, business continuity, and response plans in place and exercise them. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-advise-on-nsa-cisa-alert-on-foreign-hackers
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Bill Swearingen, Cyber Strategist, provides expert commentary at @Information Security Buzz.
"What needs to be taken from this for anyone with OT is a concept of assumed breach...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-advise-on-nsa-cisa-alert-on-foreign-hackers
Facebook Message
@Bill Swearingen, Cyber Strategist, provides expert commentary at @Information Security Buzz.
"What needs to be taken from this for anyone with OT is a concept of assumed breach...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-advise-on-nsa-cisa-alert-on-foreign-hackers