One Article Review
| Source |  CybeReason |
|---|---|
| Identifiant | 4137694 |
| Date de publication | 2022-02-16 14:10:02 (vue: 2022-02-17 11:07:19) |
| Titre | Securing Critical Infrastructure with XDR |
| Texte |
In January, CISA, the FBI and the NSA released a joint Cybersecurity Advisory (CSA), titled Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure, that provided an overview of Russian state-sponsored cyber operations, including commonly observed tactics, techniques and procedures (TTPs), as well as detection actions, incident response guidance, and recommended mitigations.
"Russian state-sponsored APT actors have used sophisticated cyber capabilities to target a variety of U.S. and international critical infrastructure organizations, including those in the Defense Industrial Base as well as the Healthcare and Public Health, Energy, Telecommunications, and Government Facilities Sectors," the advisory states.
"Russian state-sponsored cyber operations against critical infrastructure organizations have specifically targeted operational technology (OT)/industrial control systems (ICS) networks with destructive malware... CISA, the FBI, and NSA encourage the cybersecurity community-especially critical infrastructure network defenders-to adopt a heightened state of awareness and to conduct proactive threat hunting."
While critical infrastructure defense has always been high priority objective, there's still some disconnect in the world of critical infrastructure security around preparedness. According to a report covered by PRNewswire, a majority (84%) of critical infrastructure organizations indicated they had suffered at least one security breach involving their Operational Technology (OT) between 2018 and 2021; yet, 56% of respondents to the same study said they were “highly confident” that they wouldn't experience an OT breach in 2022. |
| Notes | |
| Envoyé | Oui |
| Condensat | /industrial 2018 2021; 2022 according actions actors adopt advisory against always apt around awareness base been between breach capabilities cisa commonly community conduct confident” control covered critical csa cyber cybersecurity defenders defense destructive detection disconnect encourage energy especially experience facilities fbi government guidance had has have health healthcare heightened high hunting ics incident including indicated industrial infrastructure international involving january joint least majority malware mitigating mitigations network networks nsa objective observed one operational operations organizations overview preparedness priority prnewswire proactive procedures provided public recommended released report respondents response russian said same sectors securing security some sophisticated specifically sponsored state states study suffered systems tactics target targeted techniques technology telecommunications there those threat threats titled ttps understanding used variety well world wouldn xdr yet “highly |
| Tags | Threat |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.