Cybersecurity and Infrastructure Security Agency CISA News

AT&T Restores Service After Hours of Outage

AT&T said late on Thursday an outage that disrupted calls and text messages for thousands of U.S. users and prompted federal investigations was not caused by a cyberattack. The carrier had restored wireless service for all affected customers, several hours …

Wall Street Stock-Lending Platform Crashes in Ransomware Attack

The criminal hacking gang LockBit said it was behind a ransomware attack that shut down some of the operations of EquiLend, a financial-technology firm that processes trillions of dollars of securities-lending transactions every month. The company, partly owned by some …

Microsoft Says Russia-Linked Group Hacked Employee Emails

Microsoft Corp. said a Russian-linked hacking group attacked its corporate systems, getting into a “small number” of email accounts, including those of senior leadership and employees who work in cybersecurity and legal. The company said it’s acting immediately to fix …

Iranian-Linked Hacks Expose Vulnerabilities of US Water System

In late November, an Iranian-backed hacking group attacked Israeli-made digital controls commonly used in the water and wastewater industries in the US, affecting multiple organizations across several states. That same month, the North Texas Municipal Water District, which supplies water …

Breaches by Iran-Affiliated Hackers Spanned Multiple States

A small western Pennsylvania water authority was just one of multiple organizations breached in the United States by Iran-affiliated hackers who targeted a specific industrial control device because it is Israeli-made, U.S. and Israeli authorities say. “The victims span multiple …

US, Britain, Other Countries Ink Agreement to Make AI ‘Secure by Design’

The United States, Britain and more than a dozen other countries on Sunday unveiled what a senior U.S. official described as the first detailed international agreement on how to keep artificial intelligence safe from rogue actors, pushing for companies to …

Microsoft’s Role in Email Breach to Be Part of Cyber Inquiry

A US cybersecurity advisory panel will investigate malicious targeting of cloud computing environments, including Microsoft Corp.’s role in a recent breach of government officials’ email accounts by suspected Chinese hackers, the Department of Homeland Security confirmed on Friday. The review …

US Agencies Hit in MOVEit Hacking Campaign as Victim List Grows

Multiple US agencies were compromised by a hacking campaign in which attackers have exploited flaws in a popular software tool to gather information from a range of victims. The US Cybersecurity and Infrastructure Security Agency, a unit of the Department …

China Is ‘Big Threat’ to Energy Industry, Cybersecurity Official Says

The US energy industry must shore up protection against cyberattacks from China, a more pressing concern than attacks from Russia amid its war on Ukraine, according to a senior government cybersecurity official. “The big threat we all need to be …

Cyber-Defense Agency Urges Companies to Automate Threat Testing

The US government’s cyber defense agency is recommending for the first time that companies embrace automated continuous testing to protect against longstanding online threats. The guidance, from a cluster of US and international agencies published on Wednesday, urges businesses to …