15 May 2020

DHS Warns that Conspiracy Theories Are Inciting Attacks Against Communications Infrastructure

The Department of Homeland Security has issued an intelligence alert highlight the threat to communication infrastructures posed by conspiracy theories linking 5G technology to Covid-19. The alert highlights that DHS expects the attacks to increase as the disease spreads to include attacks against telecommunication industry workers.

Read More
01 May 2020

DHS CISA to provide DoH and DoT servers for government use

Yesterday, the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) announced that it plans to run DoH and DoT DNS resolution servers for federal use. However, the agency recommended that other government agencies disable DoH and DoT support on employee browsers until the CISA servers are ready for

Read More
10 Apr 2020

DHS Warns That COVID is Provoking Extremist Violence

DHS has warned that the exploitation of the COVID-19 pandemic by domestic violent extremists (DVEs) for the purpose of committing hate crimes, acts of violence, or inciting others to commit violence.a Among the broad category of DVEs, racially or ethnically motivated violent extremists (RMVEs), militia extremists, and others have called

Read More
20 Mar 2020

Identifying Critical Infrastructure During COVID-19

The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) published a detailed guide on how to identify critical infrastructure during the pandemic. The publication states that functioning critical infrastructure is paramount to effectively responding to the COVID-19 outbreak for health and safety reasons. The DHS states that specific

Read More
10 Sep 2019

Mitigating Risks To America’s Cognitive Infrastructure

This is the second of a series on our nation’s most neglected critical infrastructure, our cognitive infrastructure. The first post dove into the nature of the challenge and why it is so important for our future that the threats to our cognitive infrastructure are understood and addressed. This post flows from that one and suggests ways the nation can mitigate many of these risks.

Read More
21 May 2019

DHS warns of ‘strong concerns’ that Chinese-made drones are stealing data

The US Department of Homeland Security is warning that drones manufactured in China are a “potential risk to an organization’s information,” because they are capable of sending sensitive flight data to servers that may be accessed by the manufacturer as well as by other parties, such as the Chinese government.

Read More
06 May 2019

2020 Campaign Staffers Being Trained to Handle Cyber Threats

The US Department of Homeland Security (DHS) is reaching out to the campaigns of presidential candidates for 2020 in an attempt to help them protect themselves against interference campaigns by state-backed hackers and other threat actors. The DHS is offering to share threat intelligence with campaigns and test the security

Read More
01 May 2019

DHS Orders Agencies to Patch Critical Flaws Within 15 Days

US government agencies need to patch critical security flaws within 15 days and high-severity vulnerabilities within 30 days under BOD 19-02, a new Binding Operational Directive issued by the Department of Homeland Security (DHS). The period for fixing critical issues was cut in half, because the previous directive (BOD 15-01)

Read More
15 Apr 2019

Gov’t warns on VPN security bug in Cisco, Palo Alto, F5, Pulse software

VPN applications offered by Cisco, Palo Alto, F5 and Pusle are putting users at risk by failing to securely store session cookies, the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and Carnegie Mellon’s CERT are warning. If threat actors can obtain access to a session cookie,

Read More
11 Apr 2019

US Government Warns of New North Korean Malware

The US Department of Homeland Security (DHS) has published a report about a newly uncovered malware strain that is linked to the infamous North Korean hacking group Hidden Cobra aka Lazarus. The malware, dubbed Hoplight, is a backdoor Trojan that has the ability to: “Read, Write, and Move Files; Enumerate

Read More