CISA RAISES THE BAR
In just a few short years, CISA has made it easier than ever for businesses, government, and citizens to stay informed about cybercrime trends, increased activity, and how to prepare to win the war cybercriminals are raging. A new headquarters for the Department of Homeland Security (DHS)’s Cybersecurity and Infrastructure Security Agency (CISA) will be located on the St. Elizabeths West Campus in Washington, DC, a National Historic Landmark.
To date for 4Q2022, here are highlights of four primary notifications posted on CISA’s website and emailed to those who subscribe:
1) Daixin Team Ransomware
Original release date: October 21, 2022
CISA, the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) have released a joint Cybersecurity Advisory (CSA) to provide information on the “Daixin Team,” a cybercrime group actively targeting U.S. businesses, predominantly in the Healthcare and Public Health (HPH) Sector, with ransomware and data extortion operations. This joint CSA provides Daixin actors’ tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) obtained from FBI threat response activities and third-party reporting.
CISA encourages HPH Sector organizations to apply the recommended Mitigations. See StopRansomware.gov for additional guidance on ransomware protection, detection, and response.
2) NOKIA ASIK AirScale System Module
Original release date: November 03, 2022
ICS Advisory (ICSA-22-307-02) Nokia ASIK 5G AirScale System Module.
CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:
- Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the Internet.
- Locate control system networks and remote devices behind firewalls and isolate them from business networks.
- When remote access is required, use secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize VPN is only as secure as its connected devices.
Contact information related to this report: Email: CISAservicedesk@cisa.dhs.gov / Toll Free: 1-888-282-0870
3) ETIC RAS and Delta Industrial Automation
Original release dates: November 3, 2022
ICS Advisory (ICSA-22-307-01) ETIC RAS
ICS Advisory (ICSA-22-307-03) Delta Industrial Automation DIALink
These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding Industrial Control Systems (ICS). CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.
4) Chemical Security Summit 2022
More than 700 participants were in attendance. Whether you attended virtually or in-person, we are so pleased that you were able to join us. Highlights included a welcome keynote from Department of Homeland Security Deputy Secretary John Tien, a fireside chat between Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly and CISA Chemical Security Associate Director Kelly Murray, and a panel featuring members of the Chemical Sector Coordinating Council.
A variety of general and breakout sessions heard more than 60 speakers from across the sector speak to wide-ranging topics that affect the chemical security community. We are pleased to share with you a select number of presentations, including Chemical Facility Anti-Terrorism Standards (CFATS) Cyber and Physical Security Best Practices, Preparing for a CFATS Inspection, CISA Chemical Security’s International Initiatives, and over a dozen more….
Prepare Your Chemical Facility for Disaster: Sign up for security and incident alerts such as
- National Terrorism Alert System (NTAS) Alerts
- CISA National Cyber Awareness System (NCAS) cybersecurity alerts
- Homeland Security Information Network-Critical Infrastructure (HSIN-CI)
- Wireless Emergency Alerts
For tips on how to further enhance your facility security posture for physical and cyber events, as well as what to do after an event has occurred, go to ChemicalSummitReg@hq.dhs.gov .
Develop, implement, exercise, and update your security and response plans!
_______________________
Be cyber-smart by availing yourself of CISA’s website advisories and communication. Avoid cyber-incidents that shatter daily operations and may compromise your proprietary data and reputation. There’s no excuse for being unprepared with the plethora of information CISA and your cybersecurity partner are ready to share and help you implement to safeguard your livelihood!
Data-Guard 365 is a MSSP firm headquartered in Chicago, Illinois with offices in Indianapolis, Atlanta, and other strategic locations across the globe. The company is a one-of-a-kind business partner whose people, processes, and technology provide hardened cybersecurity for a price point that pays for itself.
Receive a Complimentary Cyber Health Check
www.Data-Guard365.com / (317) 967-6767 / info@data-guard365.com
Industries
Solutions
- 24/7 Security Operations Center (SOC)
- Business Email Compromise (BEC)
- Chief Information Security Officer (CISO)
- Continuous Vulnerability Scanning
- Data-Loss Prevention (DLP)
- Guardian Absolute Program
- HIPAA Compliance Program
- Incident Response Retainer (IRR)
- Managed Detection and Response (MDR)
- Managed Security Awareness Training
- Penetration Testing (PenTest)
- Regulatory Compliance Services
- SIEM and SOAR
- Zero-Trust Framework
Latest Posts
- UnitedHealth Cybersecurity Breach: $872M Loss & BlackCat Ransomware Threat
- BlackCat/ALPHV Ransomware: In-Depth Analysis, Detection, Mitigation
- Cisco Duo Multifactor Authentication Service Breached: Insights and Recommendations
- Simplifying Cybersecurity for SMEs with DataGuard’s Guardian Absolute Program
- Why Data Breaches Continue to Escalate Despite Rising Cybersecurity Investments
