You are here

Cyber Incident

CSS Preparedness FS

This fact sheet lists the Cybersecurity and Infrastructure Security Agency's (CISA) suite of security preparation and preparedness resources and programs available that may enhance facility security awareness and profile.

Cyber Storm VI: Testing the Nation’s Ability to Respond to a Cyber Incident

Cyber threats to government networks and other critical infrastructure are one of our Nation’s most pressing security challenges. Consequences from attacks threaten the safety and security of the homeland, our economic competitiveness, and our way of life. With the majority of critical infrastructure owned and operated by the private sector, securing cyberspace is only possible through close collaboration, what we described as a “Collective Defense” model of shared responsibility.

CFATS RBPS 8 - Cyber

Under RBPS 8 - Cyber, high-risk facilities must have appropriate security policies, practices, and people to prevent, protect, respond to, and recover from incidents helps deter cyber sabotage.

RBPS 8 - Cyber

RBPS 8 - Cyber is the performance standard that addresses the deterrence of cyber sabotage, including preventing unauthorized on-site or remote access to critical process controls, critical business systems, and other sensitive computerized systems.

US-CERT

Multiple Petya Ransomware Infections Reported

US-CERTUS-CERT has received multiple reports of Petya ransomware infections in many countries around the world. Ransomware is a type of malicious software that infects a computer and restricts users' access to the infected machine until a ransom is paid to unlock it. Individuals and organizations are discouraged from paying the ransom, as this does not guarantee that access will be restored. Using unpatched and unsupported software may increase the risk of spreading ransomware and other cybersecurity threats.

DHS Statement on Ongoing Ransomware Attacks

The Department of Homeland Security is aware of reports of ransomware known as WannaCry affecting multiple global entities.  Ransomware is a type of malicious software that infects a computer and restricts users’ access to it until a ransom is paid to unlock it.  Microsoft released a patch in March that addresses this specific vulnerability, and installing this patch will help secure your systems from the threat. Individual users are often the first line of defense against this and other threats, and we encourage all Americans to update your operating systems and implement vigorous cybersecurity practices at home, work, and school.  

Statement from Secretary Johnson on the Release of the National Cyber Incident Response Plan

In July of last year, President Obama released Presidential Policy Directive/ PPD-41, United States Cyber Incident Coordination, establishing clear principles that will govern the Federal government's actions in responding to significant cyber incidents. I am pleased to announce today’s on-schedule release of this plan, which will help DHS and the federal government improve our ability to manage cyber incidents.

DHS Role in Cyber Incident Response

When cyber incidents occur, the Department of Homeland Security (DHS) provides assistance to potentially impacted entities, analyzes the potential impact across critical infrastructure, investigates those responsible in conjunction with law enforcement partners, and coordinates the national response to significant cyber incidents.

Cyber Incident Response at DHS

Today, Deputy Secretary Alejandro Mayorkas reflected on the state of cybersecurity at DHS and the implications of the new Presidential Policy Directive (PPD) on Cyber Incident Coordination at the International Conference on Cybersecurity in New York. The PPD was announced by Lisa Monaco, Assistant to the President for Homeland Security and Counterterrorism, at the same conference earlier in the week. 

Screen and keyboard with someone typing

Cyber Incident Response

DHS provides assistance to potentially impacted entities, analyzes the potential impact across critical infrastructure, investigates those responsible in conjunction with law enforcement partners, and coordinates the national response to significant cyber incidents.

Pages

Subscribe to Cyber Incident
Back to Top