[LINK] New NSA Report: This is How You Should Be Securing Your Network
gerard
gerard.borg at anu.edu.au
Mon Mar 7 08:38:48 AEDT 2022
May be of interest to the link. I find it a bit funny coming from the NSA :)
https://yro.slashdot.org/story/22/03/05/195232/new-nsa-report-this-is-how-you-should-be-securing-your-network
and the report...
https://media.defense.gov/2022/Mar/01/2002947139/-1/-1/0/CTR_NSA_NETWORK_INFRASTRUCTURE_SECURITY_GUIDANCE_20220301.PDF
/NSA's report 'Cybersecurity Technical Report (CTR): Network
Infrastructure Security Guidance' is available freely for all network
admins and CIOs to bolster their networks from state-sponsored and
criminal cyberattacks. The report covers network design, device
passwords and password management, remote logging and administration,
security updates, key exchange algorithms, and important protocols such
as Network Time Protocol, SSH, HTTP, and Simple Network Management
Protocol (SNMP).
The U.S. Cybersecurity and Infrastructure Security Agency isencouraging
tech leaders to view the NSA document
<https://www.cisa.gov/uscert/ncas/current-activity/2022/03/03/nsa-releases-network-infrastructure-security-guidance>as
part of its new push for all organizations in the US and elsewhere to
raise defenses after the recent disk wiper malware targeting Ukrainian
organizations. The document, from NSA's cybersecurity directorate,
encourages the adoption of 'zero trust' networks....
The new report follows NSA'sguidance to help people and organizations
choose virtual private networks (VPN)
<https://www.zdnet.com/article/nsa-cisa-partner-for-guide-on-safe-vpns-amid-widespread-exploitation-by-nation-states/>.
VPN hardware for securing connections between remote workers to
corporate networks became a prime target during the pandemic./
More information about the Link
mailing list