Cybersecurity and Infrastructure Security Agency (@CISAgov )

Cybersecurity and Infrastructure Security Agency

Bio We lead the Nation’s efforts to understand and manage risk to our critical infrastructure. Likes, retweets, follows ≠ endorsements.
Location Washington, DC
Tweets 2,1K
Followers 123,2K
Following 93
Account created 15-02-2018 19:58:11
ID 964227358218649600

Twitter Web App : S&T & Cybersecurity and Infrastructure Security Agency announce 2 Secure and Resilient Mobile Network Infrastructure #SRMNI R&D program awards. The new R&D projects will help secure the nation’s mobile network infrastructure. Learn more about #SRMNI R&D program in these press releases. dhs.gov/science-and-te…

Sprout Social : Our partners have observed active exploitation of vulnerabilities in Microsoft Exchange on-premises products. Successful exploitation enables attackers to gain persistent system access and control of an enterprise network.

Mitigate your risk: cisa.gov/ed2102

Sprout Social : We awarded a $1.2 million grant to CIAS at the UTSA: go.usa.gov/xsmvg

The grant allows CIAS to conduct a two-year pilot program that helps state, local, tribal, and territorial governments identify high value assets in order to prioritize resources and planning.

Sprout Social : 👇 ICYMI - We issued Emergency Directive 21-02

Microsoft Exchange on-premises products have serious vulnerabilities that could enable an attacker to gain control of an entire enterprise network. Utilize our resources to protect your networks: cisa.gov/ed2102

Sprout Social : Organizations using Microsoft Exchange on-premises products need to patch or remove the products from their network. If your organization can complete a forensic triage, you must do so immediately.

View our Emergency Directive for indicators & resources: cisa.gov/ed2102

Sprout Social : All organizations should take steps to remediate the observed vulnerabilities with Microsoft Exchange on-premises products. This includes hybrid configurations where Exchange servers are located on networks but are pushing data to O365 cloud environments: cisa.gov/ed2102

iPhone : CISA is aware of widespread domestic and international exploitation of Microsoft Exchange Server vulnerabilities and urges scanning Exchange Server logs with Microsoft's IOC detection tool to help determine compromise. go.usa.gov/xsPHh. #Cyber #Cybersecurity #InfoSec

iPhone : Microsoft has released alternative mitigation techniques for Exchange Server customers who cannot immediately apply updates to address vulnerabilities disclosed on March 2. Read more at go.usa.gov/xsP5w. #Cyber #Cybersecurity #InfoSec

Twitter Web App : All organizations using Microsoft Exchange on-premise products must patch or remove the products from their network immediately.

This includes hybrid configurations where Exchange servers are located on networks but are pushing data to O365 cloud environments. (3/4)

Twitter Web App : All instances of Microsoft Exchange on premise products, except O365 and Azure, are affected.

If your organization can complete a forensic triage, it must do so immediately. Look for indicators identified in our Activity Alert: go.usa.gov/xsPBw (2/4)

Sprout Social : 🛡️ Be suspicious of abnormal spikes in website traffic. Organizations should #AlwaysAuthenticate and implement authentication to IT systems, helping to protect against possible #ransomware attacks. Learn more: cisa.gov/Ransomware

Twitter Web App : And, this article offers specific measures beyond just patching to determine if your systems are already compromised: us-cert.cisa.gov/ncas/alerts/aa…

Twitter Web App : We are closely tracking Microsoft’s emergency patch for previously unknown vulnerabilities in Exchange Server software and reports of potential compromises of U.S. think tanks and defense industrial base entities. We encourage network owners to patch ASAP: msrc-blog.microsoft.com/2021/03/02/mul…