CISA and the FBI released guidance, Modern Approaches to Network Access Security, with support from other organizations including New Zealand’s GCSB, CERT-NZ, and the Canadian CCCS.
Business owners of all sizes are encouraged to adopt stronger security solutions like Zero Trust, Secure Service Edge (SSE), and Secure Access Service Edge (SASE). These solutions offer better visibility into network activity. The guidance also helps organizations understand the vulnerabilities, threats, and best practices related to traditional remote access and VPN deployment. Additionally, it highlights the risks to an organization’s network caused by misconfigured remote access.
By infosecbulletin
/ Thursday , September 5 2024
CISCO released security updates for two critical security flaws impacting its smart Licensing Utility that could allow unauthenticated, remote attackers...
Read More
By infosecbulletin
/ Wednesday , September 4 2024
OpenBAS is a platform that helps organizations to plan, schedule, and conduct crisis exercises, adversary simulations, and breach simulations. OpenBAS...
Read More
By infosecbulletin
/ Wednesday , September 4 2024
Zyxel has released software updates to fix a serious security issue in certain access point (AP) and security router versions....
Read More
By infosecbulletin
/ Tuesday , September 3 2024
VMware released a security advisory for a major vulnerability in the VMware Fusion product. This vulnerability could be exploited by...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
Indian Computer Emergency Response Team (CERT-IN) issued advisories about multiple vulnerabilities in various Palo Alto Networks applications. Attackers could exploit...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
Malaysia is quickly becoming a leading choice for investing in data centers. It aims to generate RM3.6 billion (US$781 million)...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
US authorities have issued a cybersecurity advisory about a ransomware group called RansomHub. The group is thought to have stolen data...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
There is a new way to attack Atlassian Confluence using the vulnerability CVE-2023-22527. The Confluence Data Center and Server products...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
The Cicada3301 ransomware is made in Rust and attacks Windows and Linux/ESXi hosts. Truesec researchers examined a version that targets...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
Lloyds Bank and Virgin Money's internet banking services were down on Monday, causing trouble for users to access and view...
Read More
CISA and its partners urge leaders to refer to the guidance for assistance in prioritizing and securing remote computing environments.
To learn about protecting against common network security threats, visit CISA’s Cross-Sector Cybersecurity Performance Goals. For information on zero trust, visit CISA’s Zero Trust Maturity Model.