New guidance provides information on how to create and maintain a secure operational technology (OT) environment.
The post US, Allies Release Guidance on Securing OT Environments appeared first on SecurityWeek.
CISA Releases Cyber Defense Alignment Plan for Federal Agencies
CISA has laid out the FOCAL plan, which aligns the collective operational defense capabilities across federal agencies.
The post CISA Releases Cyber Defense Alignment Plan for Federal Agencies appeared first on SecurityWeek.
CISA, FBI Urge Organizations to Eliminate XSS Vulnerabilities
CISA and the FBI have released an alert on XSS vulnerabilities, urging organizations to adopt a secure by design approach and eliminate them.
The post CISA, FBI Urge Organizations to Eliminate XSS Vulnerabilities appeared first on SecurityWeek.
Halliburton Confirms Data Stolen in Cyberattack
The US oil giant updated an SEC filing to confirm malicious hackers “accessed and exfiltrated information” from its corporate systems.
The post Halliburton Confirms Data Stolen in Cyberattack appeared first on SecurityWeek.
US Sees Iranian Hackers Working Closely With Ransomware Groups
Iranian state-sponsored APT Lemon Sandstorm is working closely with ransomware groups on monetizing network intrusions.
The post US Sees Iranian Hackers Working Closely With Ransomware Groups appeared first on SecurityWeek.
US, Allies Release Guidance on Event Logging and Threat Detection
Government agencies in the US and allied countries have released guidance on how organizations can define a baseline for event logging best practices.
The post US, Allies Release Guidance on Event Logging and Threat Detection appeared first on SecurityWeek.
CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding
Clark Construction has been tasked with building the 630,000 square foot sustainable state-of-the-art facility for CISA.
The post CISA to Get New $524 Million Headquarters in DC, Backed by Inflation Reduction Act Funding appeared first on SecurityWeek.
Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities
CISA is warning organizations about abuse of Cisco Smart Install feature, as Cisco is notifying customers about critical phone vulnerabilities it’s not patching.
The post Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities appeared first on SecurityWeek.
Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’
SecurityWeek fireside chat: Google Cloud CISO on CISA’s secure-by-design initiatives, government regulations, holding vendors accountable, and transformational security leadership.
The post Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’ appeared first on SecurityWeek.
Progress Patches Critical Telerik Report Server Vulnerability
Progress Software calls attention to a critical remote code execution flaw in the Telerik Report Server product.
The post Progress Patches Critical Telerik Report Server Vulnerability appeared first on SecurityWeek.