Search Results: cisa

This is What A Russian Cyberattack Looks Like

In light of recent geopolitical events involving Russia, U.S. agencies release detailed guidance on how to spot a Russian cyberattack.

January 18, 2022 Zachary Comeau Leave a Comment

Many organizations that have valuable data or even come close to touching sectors of the U.S. government are likely fending off cyberattacks from nation-state countries, with Russia among the top such threats. Now, due to increasing tensions between Russia, Ukraine and western countries, IT and cybersecurity professionals should be on the lookout for sophisticated threat […]

What Tech Firms Are Saying About The White House’s Open-Source Security Summit

White House's Open-Source Security Summit renews calls for software code transparency and more support for the open-source community.

January 13, 2022 Zachary Comeau Leave a Comment

After the Log4j vulnerabilities threw a wrench into the holiday plans of IT and cybersecurity folks last month, the federal government has taken swift action to address the issue, including instructing federal agencies to quickly patch and mitigate the vulnerability and making other resources available to the larger IT community. Now, the issue has been […]

Log4j Exploits Stretch Into Second Month

Microsoft is urging organizations to continue their vigilance against the Log4j bugs as known threat actors adopt the exploits.

January 4, 2022 Zachary Comeau Leave a Comment

IT and security professionals should continue to be vigilant and look for signs of vulnerable versions of Log4j as exploitation attempts stretch into a second month, Microsoft warns. According to an update to a running Microsoft security blog on the issue, sophisticated threat actors like nation-state groups and others are rolling Log4J exploitations into its […]

Use These Free, Publicly Available Log4j Scanning Tools

Microsoft, CrowdStrike, CISA and other organizations have released open-sourced Log4j scanning tools to help you find Log4Shell vulnerabilities.

December 29, 2021 Zachary Comeau Leave a Comment

Just in time for the holidays, the Log4j vulnerabilities sent IT and security teams into a panic earlier this month. The Apache Foundation has since fixed the bugs and issued patches, so the onus is now on software developers and administrators to patch software and apply the fixes. Since Log4j is a hugely popular Java […]

Ransomware Study: Two Thirds of Security Professionals Believe Ransomware and Terrorism Threats are Equal

December 21, 2021 TechDecisions Staff Leave a Comment

New Venafi research shows 57% of companies would change their mind about paying ransoms if they had to report them SALT LAKE CITY–(BUSINESS WIRE)–#cybersecurity—Venafi®, the inventor and leading provider of machine identity management, today announced the findings of a global survey of more than 1,500 IT security decision makers that reveals that almost two-thirds (60%) […]

Which Products Are Impacted By the Log4j Vulnerability?

CISA and other governments' agencies are maintaining updated lists of vendors with software impacted by the Log4j vulnerability.

December 15, 2021 Zachary Comeau Leave a Comment

Multiple governments have released a long list of IT vendors and their products that are impacted by the Log4j vulnerability, including the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Dutch National Cyber Security Centrum (NCSC) The two agencies are maintaining running lists of vendors impacted by the vulnerability on their respective GitHub repositories, […]

Finite State Boosts Velocity and Depth of IoT Vulnerability Discovery Through New Advanced Search

December 15, 2021 TechDecisions Staff Leave a Comment

Advanced search capability provides holistic contextual view of everything within IoT devices COLUMBUS, Ohio–(BUSINESS WIRE)–Finite State, the product security leader for connected devices, has released a search function for its platform that allows users to gain full visibility into their embedded devices and identify whether a known vulnerability is present. Internet of Things (IoT) devices […]

U.S. Agencies: Lookout for Cyberattacks During Holiday Break

FBI and CISA urge organizations to take several actions leading up to the Thanksgiving holiday to proactively protect themselves against cyberattacks.

November 23, 2021 Zachary Comeau Leave a Comment

Organizations should be on the lookout this holiday season as cybercriminals have shown an increased willingness to launch cyberattacks on organizations on U.S. holidays, federal agencies warn. In a joint announcement, the FBI and U.S. Cybersecurity and Infrastructure Security Agency (CISA) warn critical infrastructure operators and other organizations to take several actions leading up to […]

DHS Launches CTMS System to Recruit & Retain Cyber Talent

The CTMS platform will enable DHS to overcome challenges related to recruiting, developing and retaining top-tier cybersecurity talent.

November 19, 2021 TD Staff Leave a Comment

The Department of Homeland Security (DHS) has launched the Cybersecurity Talent Management System (CTMS), a personnel system that will enable DHS to recruit, develop, and retain cybersecurity professionals more effectively. CTMS will enable DHS to fill mission-critical cybersecurity positions by screening applicants based on demonstrated competencies, competitively compensating employees, and reducing the time it takes to […]

SecurityGate.io and Rokster Announce Partnership to Help Industrial Companies Bridge the OT Security Skills Gap and Improve Cybersecurity.

November 10, 2021 TechDecisions Staff Leave a Comment

Rokster’s professional services team helps clients with little to no security auditing experience use the SecurityGate.io platform to uncover cyber risks and understand what to do next. HOUSTON–(BUSINESS WIRE)–#cybersecurity—SecurityGate.io, the risk management acceleration platform industrial companies use to improve cybersecurity faster, today announced a partnership with Rokster, a leading technology consulting firm specializing in regulatory […]