Cloud Security – CISA guidance on cyber-attacks JAN-2021
Uncategorized Comments Off on Cloud Security – CISA guidance on cyber-attacks JAN-2021Based on recent successful cloud based security compromises, CISA has issued guidance in the bulletin below on detecting potential past attacks & better defending against future attacks
Attackers Exploit Poor Cyber Hygiene to Compromise Cloud Security Environments | CISA
Strengthening Security Configurations to Defend Against Attackers Targeting Cloud Services | CISA
CISA is aware of several recent successful cyberattacks against various organizations’ cloud services. Threat actors used a variety of tactics and techniques, including phishing and brute force logins, to attempt to exploit weaknesses in cloud security practices. In response, CISA has released Analysis Report AR21-013A: Strengthening Security Configurations to Defend Against Attackers Targeting Cloud Services which provides technical details and indicators of compromise to help detect and respond to potential attacks. CISA encourages users and administrators to review AR21-013A and apply the recommendations to strengthen cloud environment configurations.