How CISA Fights Cyber Threats During Election Primary Season

Election cyber threats come from various places, including compromised voting machines, AI deepfakes, and potential physical harm to workers. But CISA has been working diligently with various public and private partners to stymie the risk. [TechWeb]( Follow Dark Reading: [RSS]( March 08, 2024 LATEST SECURITY NEWS & COMMENTARY [How CISA Fights Cyber Threats During Election Primary Season]( Election cyber threats come from various places, including compromised voting machines, AI deepfakes, and potential physical harm to workers. But CISA has been working diligently with various public and private partners to stymie the risk. [JetBrains TeamCity Mass Exploitation Underway, Rogue Accounts Thrive]( Just one day after disclosure, adversaries began targeting the vulnerabilities to take complete control of affected instances of the popular developer platform. [Linux Variants of Bifrost Trojan Evade Detection via Typosquatting]( Spike in new versions of an old Trojan — which mimic legitimate VMware domains — alarms security researchers. ['The Weirdest Trend in Cybersecurity': Nation-States Returning to USBs]( USBs are fetch again, as major APTs from Russia, China, and beyond are turning to them for BYOD cyberattacks. [NSA's Zero-Trust Guidelines Focus on Segmentation]( Zero-trust architectures are essential protective measures for the modern enterprise. The latest NSA guidance provides detailed recommendations on how to implement the networking angle of the concept. [Don't Give Your Business Data to AI Companies]( Handing over your business data to artificial intelligence companies comes with inherent risks. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Patch Now: Apple Zero-Day Exploits Bypass Kernel Security]( A pair of critical bugs could open the door to complete system compromise, including access to location information, iPhone camera and mic, and messages. Rootkitted attackers could theoretically perform lateral movement to corporate networks, too. [First BofA, Now Fidelity: Same Vendor Behind Third-Party Breaches]( The private information of more than 28,000 people may have been accessed by unauthorized actors, thanks to a cyber incident at service provider Infosys McCamish — the same third party recently responsible for the Bank of America breach. [What Cybersecurity Chiefs Need From Their CEOs]( By helping CISOs navigate the expectations being placed on their shoulders, CEOs can greatly benefit their companies. [10 Essential Processes for Reducing the Top 11 Cloud Risks]( The Cloud Security Alliance's "Pandemic 11" cloud security challenges can be addressed by putting the right processes in place. [MORE]( PRODUCTS & RELEASES [Veeam Launches Veeam Data Cloud]( [Network Perception Introduces Rapid Verification of Zone-to-Zone Segmentation]( [Delinea Debuts Privilege Control for Servers: Thwarting Stolen Credentials and Lateral Movement]( [Boston Red Sox Choose Centripetal As Cyber Network Security Partner]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [BlackCat Goes Dark After Ripping Off Change Healthcare Ransom]( Source code fire sale, stiffing affiliates — are BlackCat admins intentionally burning their RaaS business to the ground? Experts say something's up. LATEST FROM THE EDGE [Cyber Insurance Strategy Requires CISO-CFO Collaboration]( Cyber risk quantification brings together the CISO's technical expertise and the CFO's focus on financial impact to develop a stronger and better understanding of cyber risk. LATEST FROM DR TECHNOLOGY [How to Ensure Open-Source Packages Are Not Mines]( CISA and OpenSSF jointly published new guidance recommending technical controls to make it harder for developers to bring in malicious software components into code. LATEST FROM DR GLOBAL [Nigerian National Pleads Guilty of Conspiracy in BEC Operation]( The defendant targeted victims, along with co-conspirators, to trick them into wiring funds to drop accounts using spoofed emails. WEBINARS - [Making Sense of Security Operations Data]( - [Building a Modern Endpoint Strategy for 2024 and Beyond]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Cheat Sheet - 5 Strategic Security Checkpoints]( - [Demystifying Zero Trust in OT]( - [Causes and Consequences of IT and OT Convergence]( - [Strengthen Microsoft Defender with MDR]( - [Fortinet Named a Leader in the Forrester Wave: Zero Trust Edge (ZTE) Solutions]( - [2023 Gartner Magic Quadrant for Single-Vendor SASE]( - [Mandiant Threat Intelligence at Penn State Health]( [View More White Papers >>]( FEATURED REPORTS - [Industrial Networks in the Age of Digitalization]( - [Zero-Trust Adoption Driven by Data Protection]( - [How Enterprises Assess Their Cyber-Risk]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=121954&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_03.08.24&sp_cid=52411&utm_content=DR_NL_Dark%20Reading%20Daily_03.08.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#5a If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)