Saturday , September 28 2024
CISA logo

CISA confirms hackers possibly access CSAT January incident

infosecbulletin Tuesday , June 25 2024 Data Breach

CISA warns that its Chemical Security Assessment Tool (CSAT) was hacked in January. Hackers used a webshell on the Ivanti device, which may have exposed important security assessments and plans.

In March, The Record revealed that CISA had a breach after the Ivanti device was exploited, leading to two systems being taken offline for investigation.

Meta fined $101 million for storing passwords in plaintext

By infosecbulletin / Saturday , September 28 2024
Meta was fined over $100 million by the EU privacy regulator on Friday due to a security issue with Facebook...
Read More
Meta fined $101 million for storing passwords in plaintext

Microsoft warns Storm-0501 targets hybrid cloud environments

By infosecbulletin / Friday , September 27 2024
Microsoft cybersecurity researchers found that the "Storm-0501" ransomware group is targeting hybrid cloud environments. Storm-0501 Attacking Cloud Environments: Storm-0501 is...
Read More
Microsoft warns Storm-0501 targets hybrid cloud environments

RCE flaw impacts all GNU/Linux System: Details Revealed

By infosecbulletin / Friday , September 27 2024
Simone Margaritelli has discovered a serious remote code execution (RCE) vulnerability in the Common Unix Printing System (CUPS), impacting all...
Read More
RCE flaw impacts all GNU/Linux System: Details Revealed

Octo2: European Banks Already Under Attack by New Malware varient

By infosecbulletin / Friday , September 27 2024
Cybersecurity researchers at ThreatFabric have identified a new and more dangerous variant of the Octo banking malware, called "Octo2." This...
Read More
Octo2: European Banks Already Under Attack by New Malware varient

CISA Releases Guideline mitigating Active Directory compromise

By infosecbulletin / Friday , September 27 2024
To improve cybersecurity, the Cybersecurity and Infrastructure Security Agency (CISA) has partnered with international agencies to release a guide on...
Read More
CISA Releases Guideline mitigating Active Directory compromise

G7 cyber group warns to prep for quantum computing risks

By infosecbulletin / Friday , September 27 2024
An intergovernmental group urged the financial sector on Wednesday to prepare for potential threats from advancements in quantum computing. The...
Read More
G7 cyber group warns to prep for quantum computing risks

Cloudflare report
India linked hacker to target Bangladeshi Gov.t and law agency

By infosecbulletin / Thursday , September 26 2024
A threat actor likely operating out of India is relying on various cloud services to conduct cyberattacks against energy, defense,...
Read More
Cloudflare report India linked hacker to target Bangladeshi Gov.t and law agency

India launches first Al-powered network solution for spam detection

By infosecbulletin / Thursday , September 26 2024
India's Bharti Airtel has launched India's first AI-powered solution that detects spam calls and messages, alerting customers in real-time. The...
Read More
India launches first Al-powered network solution for spam detection

White Snake to Steal Credit Cards CVC Codes from Chrome

By infosecbulletin / Wednesday , September 25 2024
The White Snake malware has been updated to take advantage of a new feature in the latest Google Chrome version....
Read More
White Snake to Steal Credit Cards CVC Codes from Chrome

Kaspersky Automatically Replaces With UltraAV, Raising Concerns

By infosecbulletin / Tuesday , September 24 2024
Kaspersky has formally begun pulling back its offerings in the U.S., migrating existing users to UltraAV, effective September 19, 2024,...
Read More
Kaspersky Automatically Replaces With UltraAV, Raising Concerns

CISA wouldn’t provide details about the incident, but according to sources from The Record, it involved the Infrastructure Protection (IP) Gateway and Chemical Security Assessment Tool (CSAT).

CSAT is an online portal used by facilities to report their possession of chemicals that could be used for terrorism. It helps determine if they are considered high-risk. If they are, the tool prompts them to upload a security vulnerability assessment (SVA) and site security plan (SSP) survey containing sensitive information about the facility.

CISA confirms breach:

CISA has confirmed the breach of the CSAT Ivanti Connect Secure appliance on January 23, 2024.

The cybersecurity agency has informed CFATS program participants about the intrusion and the potentially affected information.

“While the investigation found no evidence of credentials being stolen, CISA encourages individuals who had CSAT accounts to reset passwords for any account, business or personal, which used the same password,” CISA explained, urging organizations that use Ivanti products to read a February advisory about recent vulnerabilities affecting the company’s tools.

Check Also

keyboard

NPDC fined Fidelity Bank ₦555.8 Million

Nigeria’s National Data Protection Commission (NDPC) fined Fidelity Bank ₦555.8 million for breaking customer data …

Leave a Reply

Your email address will not be published. Required fields are marked *

Mail: [email protected]
© Copyright 2024, All Rights Reserved InfoSecBulletin