CISA Releases Another Edition of the National Emergency Communications Plan Spotlight Series
By Dede Smith |
The Cybersecurity and Infrastructure Security Agency (CISA) released its next National Emergency Communications Plan (NECP) Spotlight: Leveraging Mobile Applications to Bolster Emergency Alerts and Warnings cisa.gov/necp. This is the fourth Spotlight in a series of articles designed to demonstrate how the NECP’s recommendations apply within real-world events. This Spotlight examines three different mobile…
Read More CISA: MARs on Microsoft Exchange Vulnerabilities
By Dede Smith |
CISA has published two TLP:WHITE Malware Analysis Reports (MARs) associated with Alert AA21-062A: Mitigate Microsoft Exchange Server Vulnerabilities (TLP:WHITE); details are provided below. MAR-10329496-1.v1: China Chopper Webshell https://us-cert.cisa.gov/ncas/analysis-reports/ar21-084a MAR-10329499-1.v1: China Chopper Webshell https://us-cert.cisa.gov/ncas/analysis-reports/ar21-084b V/r,
Read More CISA Hunt and Incident Response Program (CHIRP)
By Dede Smith |
Critical Infrastructure Colleagues and Partners, CISA has released the CISA Hunt and Incident Response Program (CHIRP) – a forensics collection capability – to assist network defenders with detecting activity related to the supply chain compromises affecting SolarWinds and Active Directory/Microsoft 365. CHIRP is an open source project and is freely available to all…
Read More CISA: Counter Unmanned Aircraft Systems (CUAS) Webinar
By Dede Smith |
Due to the overwhelming response in the number of individuals that have registered for our April 20, 2021, New Mexico Tech Counter-UAS Training Course, we are now hosting a second training course on April 27 to allow maximum participation. Registration for the April 27 course is below and attached. The Cybersecurity and Infrastructure Security Agency,…
Read More CISA-FBI Joint Advisory on TrickBot Malware
By Dede Smith |
Greetings whole community stakeholders, CISA has released (TLP:WHITE) Current Activity: CISA-FBI Joint Advisory on TrickBot Malware. CISA and the FBI have released a Joint Cybersecurity Advisory (CSA) on TrickBot malware. A sophisticated group of cyber criminals are using phishing emails claiming to contain proof of traffic violations to lure victims into downloading TrickBot. TrickBot is…
Read More CISA Region VI Critical Manufacturing Roundtable
By Dede Smith |
Critical Infrastructure Partners, You are cordially invited to participate in the Region VI Critical Manufacturing (CM) Sector Security Roundtable webinar being held Thursday, March 25th. This unique opportunity is available to manufacturing stakeholders from Arkansas, Louisiana, New Mexico, Oklahoma, and Texas. This Security Roundtable is an exciting opportunity to bring together Region VI…
Read More CISA Web Page Strongly Urges All Organizations to Immediately Address Microsoft Exchange Vulnerabilities
By Dede Smith |
CISA has published a web page that strongly urges all organizations to immediately address the recent Microsoft Exchange Server product vulnerabilities. As exploitation of these vulnerabilities is widespread and indiscriminate, CISA strongly advises organizations follow the guidance laid out in the web page. The guidance provides specific steps for both leaders and IT security staff…
Read More CISA: Microsoft IOC Detection Tool and Alternative Mitigation Techniques for Exchange Server Vulnerabilities
By Dede Smith |
Greetings, Microsoft has released an updated script that scans Exchange log files for indicators of compromise (IOCs) associated with the vulnerabilities disclosed on March 2, 2021. CISA is aware of widespread domestic and international exploitation of these vulnerabilities and strongly recommends organizations run the Test-ProxyLogon.ps1 script-as soon as possible-to help determine whether their systems are…
Read More What/Who is Cisa?
On November 16, 2018, President Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018, which elevated the mission of the former NPPD within the Department of Homeland Security (DHS), establishing the Cybersecurity and Infrastructure Security Agency (CISA). CISA is a successor agency to NPPD and assists both other government agencies and private sector organizations in addressing infrastructure and cybersecurity issues.
IRPT works closely with CISA to inform the inland river industry of available training courses offered by CISA, current potential threats to infrastructure and/or cyber that could adversely impact industry, and free services CISA provides that are available to industry.
CISA subcomponents include the:
- Cybersecurity Division
- Infrastructure Security Division
- Emergency Communications Division
- National Risk Management Center
- Integrated Operations Division
- Stakeholder Engagement Division
- National Emergency Technology Guard (inactive, but can be activated by the director of CISA)
Regional/District Contacts:
