CISA is building an automated ransomware warning program
MP3•Beranda episode
Manage episode 414777777 series 3372158
Konten disediakan oleh The Daily Scoop Podcast. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh The Daily Scoop Podcast atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.
By the end of the year, the Cybersecurity and Infrastructure Security Agency plans to launch an automated vulnerability warning program to alert organizations that are running software with vulnerabilities being exploited by ransomware gangs, the agency’s director, Jen Easterly, said this week. Currently running in a pilot phase, the program is mandated by the Cyber Incident Reporting for Critical Infrastructure Act of 2022 and aims to reduce the number of ransomware attacks by getting the owners and operators of vulnerable systems to patch them before they can be infiltrated. Speaking at an event hosted by the Institute for Security and Technology, Easterly said the pilot is focused on reducing the prevalence of ransomware by using vulnerability scanning tools to let businesses know if they have vulnerabilities that need to be patched. CISA has issued 2,049 warnings since the pilot was launched last January. It has since expanded to include CISA’s database of known exploited vulnerabilities and common misconfigurations that can be linked to ransomware attacks.
…
continue reading
439 episode