José Pedro MayoMar 1, 2023
CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-059a
#cybersecurity #hardening #CISARedTeam #Monitoring #eventlogs #EDR
n00b_haxorMar 1, 2023

Misleading headline is misleading: https://therecord.media/cisa-red-team-large-critical-infrastructure-organization/

Maybe they meant to say "They didn't get stopped?" If you read the report:

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-059a

They did get caught. It's pretty plain to see in the Measurable Events table.

That's not to say there are some pretty scary takeaways, just that I'm pretty tired of the infosec shock and awe headlines.

Oh, and it's AWESOME that #CISARedTeam released this report

And use #MFA

CISA red-teamed a 'large critical infrastructure organization' and didn't get caught

CISA is reporting what it learned when its hackers were invited to break into a critical infrastructure organization's network.

The Record from Recorded Future News