Tag: CISA
Shields up: How MSPs can advance cybersecurity with cutting-edge technologies
“Bottoms up” is a good-natured toast or nudge to get one to finish their drink. The Cybersecurity and Infrastructure Security Agency (CISA) is introducing a good-natured nudge to get organizations to finish their resiliency called “Shields Up!” You probably won’t...
Top 10 cybersecurity misconfigurations identified by CISA and NSA
The CISA and NSA jointly released a list of the top 10 cybersecurity misconfigurations recently. These misconfigurations often lead to breaches and incidents that should be remedied. The report’s executive summary concludes: “These most common misconfigurations illustrate a trend of...
Cybersecurity Awareness Month to-do list
This month marks the 20th annual Cybersecurity Awareness Month, a collaboration between government and industry to highlight the importance of cybersecurity. The past two decades have brought about rapid change. “It’s hard to believe that Cybersecurity Awareness Month has been...
CISA looks to rally RMM community to improve MSP security
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is now focusing on fixing systematic risks in the remote monitoring and management (RMM) tools that most managed service providers (MSPs) employ. The agency, as part of a Joint Cyber Defense Collaborative...
Cybersecurity Threat Advisory: Microsoft .NET vulnerability
This Cybersecurity Threat Advisory highlights a patched security flaw in Microsoft .NET and Visual Studio products that has been cited for active exploitation. To mitigate this vulnerability, users are advised to apply security updates as soon as possible. What is...
Ransomware continues to impact schools
The city of Des Moines, Iowa, is accustomed to seeing its schools close in January, but the closings usually involve snow or ice, not a cyberattack. On January 10 and 11 of this year, however, Des Moines Public Schools were...
Tech Time Warp: The malware RAT known as Regin
On Nov. 25, 2014, the Cybersecurity and Infrastructure Agency (CISA) issued an alert about Regin, a “sophisticated backdoor Trojan used to conduct intelligence-gathering campaigns.” Journalists reported the entities affected by Regin included airlines, telecom companies, energy companies and private individuals....
Hackers prey on holiday MFA fatigue
Multifactor authentication (MFA) is the gold standard in offices around the world. We all know the drill: you use your username (often, and inadvisably, your email address) and, perhaps, as the password, the name of your first dog and the...
CISA warns industrial clients are vulnerable
MSPs with industrial clients in their portfolios have a set of security issues that often differ from other verticals, and each vertical brings its own baggage. With healthcare clients, for example, it’s PHI and HIPAA regulations. With finance clients, there...
Cybersecurity summits and tools to improve training
Anytime an MSP can expose its engineers and technicians to free training and education, it’s an opportunity that shouldn’t be passed up. One such opportunity is the upcoming “5th Annual Cybersecurity Summit” hosted by CISA and Morehouse College in Atlanta....
