The Inner Circle

 View Only

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks

  • 1.  CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks

    Posted Mar 05, 2023 02:11:00 AM
      |   view attached

    Hi All,

    The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this Cybersecurity Advisory (CSA) detailing activity and key findings from a recent CISA red team assessment-in coordination with the assessed organization-to provide network defenders recommendations for improving their organization's cyber posture.

    In 2022, CISA conducted a red team assessment (RTA) at the request of a large critical infrastructure organization with multiple geographically separated sites. The team gained persistent access to the organization's network, moved laterally across the organization's multiple geographically separated sites, and eventually gained access to systems adjacent to the organization's sensitive business systems (SBSs). Multifactor authentication (MFA) prompts prevented the team from achieving access to one SBS, and the team was unable to complete its viable plan to compromise a second SBSs within the assessment period.



    ------------------------------
    Michael Roza CPA, CISA, CIA, CC, MBA, Exec MBA
    ------------------------------