NSA News & Highlights

Results:
Tag: CSI

Aug. 21, 2024

NSA Joins Allies in Releasing Best Practices for Event Logging

FORT MEADE, Md. – To help owners and operators of NSS, DoD, and the DIB protect against malicious actors using living off the land (LOTL) techniques, the National Security Agency (NSA) is joining the Australian Signals Directorate’s Australian Cyber Security Centre (ASD ACSC) and international co-authors in releasing “Best Practices for Event Logging and Threat Detection,” a Cybersecurity Information Sheet (CSI).

July 10, 2024

NSA’s Final Zero Trust Pillar Report Outlines How to Achieve Faster Threat Response Time

FORT MEADE, Md. – The National Security Agency (NSA) is releasing the Cybersecurity Information Sheet (CSI) “Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar” to help organizations better detect cyber threats and respond to common threats faster.

March 5, 2024

NSA Releases Maturity Guidance for the Zero Trust Network and Environment Pillar

The National Security Agency (NSA) is releasing a Cybersecurity Information Sheet (CSI) today that details curtailing adversarial lateral movement within an organization’s network to access sensitive data and critical systems. The CSI, entitled “Advancing Zero Trust Maturity Throughout the Network and Environment Pillar,” provides guidance on how to strengthen internal network control and contain network intrusions to a segmented portion of the network using Zero Trust principles.

Oct. 18, 2023

How to Protect Against Evolving Phishing Attacks

The National Security Agency (NSA) and U.S. partners have released a new report describing the latest techniques in phishing attacks and the defenses organizations can deploy against them.

May 23, 2023

#StopRansomware Guide Released by NSA and Partners

To guide network defenders in protecting against the rapidly evolving ransomware tactics of malicious cyber actors, the National Security Agency (NSA) and several partners are publicly releasing the “#StopRansomware Guide” Cybersecurity Information Sheet (CSI) today.

April 19, 2023

NSA Part of Coalition Highlighting Cybersecurity Best Practices for Smart Cities

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI) are partnering with international partners’ cybersecurity agencies to publish cybersecurity best practices for smart cities, which integrate public services into a connected environment to increase efficiencies and improve the quality of life in various communities.

Nov. 10, 2022

NSA Releases Guidance on How to Protect Against Software Memory Safety Issues

The National Security Agency (NSA) published guidance today to help software developers and operators prevent and mitigate software memory safety issues, which account for a large portion of exploitable vulnerabilities.

Sept. 22, 2020

NSA Releases Cybersecurity Guidance “Selecting and Safely Using Multifactor Authentication Services”

NSA cybersecurity guidance on "Selecting and Safely Using Multifactor Authentication Services".

Aug. 4, 2020

How Mobile Device Users Can Limit Their Location Data Exposure

The National Security Agency released a Limiting Location Data Exposure Cybersecurity Information Sheet (CSI) today to guide National Security System (NSS) and Department of Defense (DoD) mobile device users on how they might reduce risk associated with sharing sensitive location data. The guide summarizes how and why mobile devices expose location data and explains potential risk that comes with using them. It provides mitigations to limit the sharing of this information, but warns there is no solution to fully mitigate a mobile device from being located.

April 24, 2020

Working from Home? Select and Use Collaboration Services More Securely

Article about NSA's release of cybersecurity guidance about selecting and safely using collaboration services for telework. NSA released a full and a short version of the guidance. By following the practical guidelines listed in this guidance, users can mitigate some of the risks posed by malicious cyber threat actors.