The Cybersecurity (CS) Digest is a curated bi-weekly news summary for cybersecurity professionals. It is transmitted in an HTML-formatted email and provides links to articles and news summaries across a spectrum of cybersecurity topics.

CSIAC ANNOUNCEMENTS:

In Case you Missed It – CSIAC Webinar – Cyberphysical Infrastructure Testbeds - CSIAC

Cyberphysical security challenges intersecting the Internet and the electricity grid - and therefore, all critical infrastructures - require multi-stakeholder public-private partnerships across the nation to protect against known clear and present dangers. Cyberphysical infrastructure testbeds must engage industry and the research community, address legacy complex system vulnerabilities, and integrate and test smart grid and mobility novel and known best practices for: Secure Cloud to Edge Architectures synced to 5G, AI, and Energy Storage; Industrial Control Systems/IoT (sustainable IT/OT/smart meters/sensors); Trustworthy Autonomous Systems in Smart and Safe Cities and Regions; Sensing, Early Warning Systems.

New CSIAC Podcast – Generic Types – Rust Models Part 4 - CSIAC

This video discusses Rust "Generic Types", a language facility for defining types that depend on a parameter specified at compile time. Rust Generics are similar to generic types used in Java and C#, but unlike C++ templates which support specialization.

RECENT HEADLINES:

CISA Releases Securing Industrial Control Systems: A Unified Initiative - US-CERT.gov

The Cybersecurity and Infrastructure Security Agency (CISA) has released its five-year industrial control systems (ICS) strategy: Securing Industrial Control Systems: A Unified Initiative. The strategy-developed in collaboration with industry and government partners-lays out CISA's plan to improve, unify, and focus the effort to secure ICS and protect critical infrastructure.
Tags: Industrial Control Systems (ICS)

University of North Georgia Recognized for Crushing Codebreaker Success - NSA.gov

Desmond Henderson, a senior cyber security major at the University of North Georgia (UNG), thought the National Security Agency's Codebreaker Challenge (CBC) would be just like many of the other Capture the Flag hacking events he'd participated in over the years, but he was wrong.
Tags: Codebreaker Challenge (CBC), National Security Agency (NSA)

Netgear Router Vulnerabilities - US-CERT.gov

Multiple Netgear router models contain vulnerabilities that a remote attacker can exploit to take control of an affected device.
Tags: Netgear, Vulnerabilities

DHS S&T and NSA Test Automated Security Vetting for Mobile Apps - NSA.gov

Ensuring the security of mobile application (app) software for use within the federal government no longer needs to be time consuming or expensive.
Tags: Mobile Application Security, Mobile Security, National Security Agency (NSA)

Samba Releases Security Updates - US-CERT.gov

The Samba Team has released security updates to address vulnerabilities in multiple versions of Samba. An attacker could exploit some of these vulnerabilities to take control of an affected system.
Tags: Samba, Vulnerabilities

USSF Commercial SATCOM Office announces development of new security program - SpaceForce.mil

The U.S. Space Force Commercial Satellite Communications Office recently announced the development of its Infrastructure Asset Pre-Assessment Program.
Tags: Infrastructure Asset Pre-Assessment Program, USSF

AI Gleaned Information About Emerging Threats, Future Plots From bin Laden Raid - Defense.gov

On May 2, 2011, U.S. Navy special operators carried out a Central Intelligence Agency-led operation to kill or capture Osama bin Laden, the founder of al-Qaida, the group responsible for many terrorist activities, including the 9/11 attacks. The raid on the compound in Abbottabad, Pakistan, owned by OBL, as he was called, was launched from Afghanistan.
Tags: Artificial Intelligence (AI)

Congressional Cybersecurity Leaders Introduce Bipartisan Legislation to Establish a National Cyber Director - Langevin.House.gov

Director would serve as the President's principal advisor on cybersecurity, lead national-level coordinator for cyber strategy and policy.
Tags: National Cyber Director

CSIAC Supported Communities

CSIAC supports several communities of practice, such as the Cyber Community of Interest (COI) Group and research & development working groups.

Technical Resources, Policy and Guidance

This list of related sites provides additional sources to pursue the topic of Cybersecurity. The sites include Government organizations, including federal agencies, Department of Defense and military service agencies, commercial organizations, and academic institutions.

The CS Digest provides links to third party Websites. The CSIAC is not responsible for the availability of, and content provided on, third party Websites. You should refer to the policies posted by other Websites regarding their privacy and other topics before you use them. The CSIAC is not responsible for third party content accessible through the CSIAC CS Digest, including opinions, advice, statements, advertisements and endorsements, and you bear all risks associated with the use of such content.