CarderPlanet
Professional
- Messages
- 2,549
- Reaction score
- 724
- Points
- 113
Why do large companies become vulnerable? The experts have an answer.
The US National Security Agency (NSA) and the US Cybersecurity and Infrastructure Protection Agency (CISA) today revealed the ten most common cybersecurity configuration errors found by their teams in the networks of various large organizations.
The joint report of the agencies details the methods by which attackers successfully exploit these errors for various purposes, including access to sensitive information or systems.
Information for the report was collected by the NSA and CISA teams during incident assessments and response. "These assessments have shown how common mistakes, such as standard credentials, improper separation of rights, poor patch management, and insufficient internal network monitoring, put every American at risk," said Eric Goldstein, executive assistant director for cybersecurity at CISA.
The top ten most common NSA and CISA errors include:
Goldstein encouraged software vendors to adopt a number of proactive practices to effectively address these challenges. These practices include integrating security tools at the initial stages of development and throughout the software lifecycle.
Goldstein also stressed the importance of mandatory multi-factor authentication for privileged users, whose accounts are a particularly vulnerable target for cybercriminals.
The NSA and CISA also recommend that network defenders implement recommended measures to reduce the risk of exploiting these common bugs, including regular updates and automating the patch installation process.
In conclusion, federal agencies recommend that you "exercise, test, and validate your organization's security program in accordance with the MITRE ATT&CK enterprise framework."
The US National Security Agency (NSA) and the US Cybersecurity and Infrastructure Protection Agency (CISA) today revealed the ten most common cybersecurity configuration errors found by their teams in the networks of various large organizations.
The joint report of the agencies details the methods by which attackers successfully exploit these errors for various purposes, including access to sensitive information or systems.
Information for the report was collected by the NSA and CISA teams during incident assessments and response. "These assessments have shown how common mistakes, such as standard credentials, improper separation of rights, poor patch management, and insufficient internal network monitoring, put every American at risk," said Eric Goldstein, executive assistant director for cybersecurity at CISA.
The top ten most common NSA and CISA errors include:
- standard software configurations;
- incorrect separation of user/administrator privileges;
- insufficient internal network monitoring;
- lack of network segmentation;
- poor update management;
- bypassing access control systems;
- weak methods of multi-factor authentication;
- insufficient access control lists for network resources;
- poor login hygiene;
- unlimited code execution.
Goldstein encouraged software vendors to adopt a number of proactive practices to effectively address these challenges. These practices include integrating security tools at the initial stages of development and throughout the software lifecycle.
Goldstein also stressed the importance of mandatory multi-factor authentication for privileged users, whose accounts are a particularly vulnerable target for cybercriminals.
The NSA and CISA also recommend that network defenders implement recommended measures to reduce the risk of exploiting these common bugs, including regular updates and automating the patch installation process.
In conclusion, federal agencies recommend that you "exercise, test, and validate your organization's security program in accordance with the MITRE ATT&CK enterprise framework."
