CISA: Microsoft IOC Detection Tool and Alternative Mitigation Techniques for Exchange Server Vulnerabilities
Greetings, Microsoft has released an updated script that scans Exchange log files for indicators of compromise (IOCs) associated with the vulnerabilities disclosed on March 2, 2021. CISA is aware of widespread domestic and international exploitation of these vulnerabilities and strongly recommends organizations run the Test-ProxyLogon.ps1 script-as soon as possible-to help determine whether their systems are…Read More
Critical Infrastructure Colleagues and Partners, The Cybersecurity and Infrastructure Security Agency (CISA) invites you to participate on a call Friday, March 5, 2021, at 12 pm Eastern addressing active exploitation of a vulnerability in affecting Microsoft Exchange Server 2013, 2016, and 2019. Microsoft recently released out-of-band security updates to address these vulnerabilities. This call…Read More
The Cybersecurity and Infrastructure Security Agency (CISA) and CYBER.ORG jointly announced a cyber safety video series to help those learning or working online take proactive steps to protect themselves and their business. CYBER.ORG is a cybersecurity workforce development organization that targets K-12 students with cyber career awareness, curricular resources, and teacher professional development. However,…Read More
The Dams Sector Risk Management Agency will be hosting an Introduction to Security and Protection of Dams and Levees Webinar on Tuesday, March 16, 2021 from 1:00-3:00 p.m. (EST). Attached is more information on the webinar. This webinar is a 101-level webinar that highlights fundamental aspects of security and protection for Dams Sector…Read More
Critical Infrastructure Colleagues and Partners, The Cybersecurity and Infrastructure Security Agency (CISA) has released a Personal Security Considerations fact sheet. This document encourages critical infrastructure owners and their personnel to remain vigilant and report suspicious behavior that individuals may exhibit in order to thwart an attack. It also contains several easily implementable security measures…Read More
Critical Infrastructure Colleagues, The Cybersecurity and Infrastructure Security Agency (CISA) is pleased to announce the publication of the Cybersecurity and Physical Security Convergence Action Guide, which provides guidance on converging cybersecurity and physical security functions to better position organizations to mitigate cyber-physical threats. Convergence is defined as formal collaboration between previously disjointed…Read More
(TLP:WHITE) *URGENT* Message from CISA: Active Exploitation of SolarWinds Software Volexity has released “Dark Halo Leverages SolarWinds Compromise to Breach Organizations,” outlining technical details about methods of the actor they believe was involved in this activity: To learn more, please click here. V/R, CyberLiaison Cybersecurity Division Cybersecurity and Infrastructure Security…Read More
CISA Publishes- Port Facility Cyber Risk Infographic The Cybersecurity and Infrastructure Security Agency (CISA), in coordination with other federal and private sector partners, is working to develop a better understanding of cybersecurity risk to maritime facilities. In support of this effort, CISA has made available its Port Facility Cybersecurity Risks Infographic to…Read More
AA20-336A: Advanced Persistent Threat Actors Targeting U.S. Think Tanks (TLP:WHITE) This alert is for the widest distribution so please share as you see necessary. If you have any questions, please let me know. Thank you. Chad Johnston Protective Security Advisor-Arkansas, Region VI Cybersecurity and Infrastructure Security Agency 501-414-1468 (Cell) Chad.Johnston@cisa.dhs.gov The…Read More
Department of Homeland Security Cybersecurity and Infrastructure Security Agency Active Shooter Preparedness Webinars Virtual active shooter preparedness courses are currently being offered. If you are interested in attending, please click on the registration links below. December 9th, 2020 2:00 PM EST – To register visit: https://www.govevents.com/details/41996/cisa-active-shooter-preparedness-webinar–cisa-region-ii-nj-ny-pr-usvi/ December 16th, 2020 2:00 PM EST…Read More
What/Who is Cisa?
On November 16, 2018, President Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018, which elevated the mission of the former NPPD within the Department of Homeland Security (DHS), establishing the Cybersecurity and Infrastructure Security Agency (CISA). CISA is a successor agency to NPPD and assists both other government agencies and private sector organizations in addressing infrastructure and cybersecurity issues.
IRPT works closely with CISA to inform the inland river industry of available training courses offered by CISA, current potential threats to infrastructure and/or cyber that could adversely impact industry, and free services CISA provides that are available to industry.
CISA subcomponents include the:
- Cybersecurity Division
- Infrastructure Security Division
- Emergency Communications Division
- National Risk Management Center
- Integrated Operations Division
- Stakeholder Engagement Division
- National Emergency Technology Guard (inactive, but can be activated by the director of CISA)