Posts Tagged ‘National Cyber Security Division’

Friday, August 2, 2013 @ 05:08 PM gHale

This isn’t the first time, but US-CERT has received reports of increased activity concerning DHS-themed ransomware malware infection, according to a report on US-CERT.

Targeted users receive a message claiming “use of their computer has been suspended” and the victim must pay a fine to unblock it. One iteration of this malware also takes a webcam (if available) photo or video of a recipient and posts it in a pop-up to add to the appearance of legitimacy.

RELATED STORIES
DHS Ransomware Making Rounds
Mac Attack: Ransomware Targets Safari
Ransomware Forces Survey on Victim
Music App a Political Android Trojan

The ransomware falsely claims to be from the U.S. Department of Homeland Security and the National Cyber Security Division.

Users who end up infected with the malware should consult with a security expert to assist in removing the malware, or perform a clean reinstallation of their OS after formatting their computer’s hard drive.

US-CERT and DHS encourage users and administrators not to pay the perpetrators and to report the incident to the FBI at the Internet Crime Complaint Center (IC3).

Use caution when encountering these types of email messages and take the following preventive measures to protect themselves from phishing scams and malware campaigns that attempt to frighten and deceive a recipient for the purpose of illegal gain:
• Do not click on or submit any information to webpages.
• Do not follow unsolicited web links in email messages.
• Use caution when opening email attachments. Refer to the Security Tip “Using Caution with Email Attachments” for more information on safely handling email attachments.
• Maintain up-to-date antivirus software.
• Infected users should change all passwords after removing the malware from their system.
• Refer to the “Recognizing and Avoiding Email Scams” document for more information on avoiding email scams.
• Refer to the Security Tip “Avoiding Social Engineering and Phishing Attacks” for more information on these forms of attacks.

Friday, February 24, 2012 @ 02:02 PM gHale

Critical infrastructures are dependent on information technology systems and computer networks for essential operations.

Reliability and resiliency of the systems that interconnect these infrastructures is vital. The National Cyber Security Division (NCSD) collaborates across public, private, and international communities to advance this goal by developing and implementing coordinated security measures to protect against cyber threats.

RELATED STORIES
Threat Alert Reaches New High
DoD Readies for Stuxnet-like Attack
Cyber Report: Bad Guys Winning
Security Best Practices will Cut Downtime
DHS Unveils Cyber Strategy Plan

Cyber Security Evaluation Tool (CSET) version 4.0.1, a Department of Homeland Security (DHS) product that assists organizations in protecting their key national cyber assets, is now ready to help users start protecting their systems.

Developed under the direction of the DHS’ NCSD by cyber security experts and with assistance from the National Institute of Standards and Technology (NIST), this tool provides users with a systematic and repeatable approach for assessing the security posture of their cyber systems and networks. It includes high-level and detailed questions related to all industrial control and IT systems.

CSET is a desktop software tool that guides users through a step-by-step process to assess their control system and information technology network security practices against recognized industry standards.

The output from CSET ends up as a prioritized list of recommendations for improving the cyber security posture of the organization’s enterprise and industrial control cyber systems. The tool derives the recommendations from a database of cyber security standards, guidelines, and practices. Each recommendation links to a set of actions that can apply to enhance cyber security controls.

Designed for easy installation and use on a stand-alone laptop or workstation, CSET incorporates a variety of available standards from organizations such as NIST, North American Electric Reliability Corporation (NERC), International Organization for Standardization (ISO), U.S. Department of Defense (DoD), and others. When the tool user selects one or more of the standards, CSET will open a set of questions to answer.

The answers to these questions will the compare against a selected security assurance level, and a detailed report will show areas for potential improvement. CSET provides a means to perform a self-assessment of the security posture of your control system environment.

Some of the benefits include:
• CSET contributes to an organization’s risk management and decision-making process
• Raises awareness and facilitates discussion on cyber security within the organization
• Highlights vulnerabilities in the organization’s systems and provides recommendations on ways to address the vulnerability
• Identifies areas of strength and best practices followed in the organization
• Provides a method to systematically compare and monitor improvement in the cyber systems
• Provides a common industry-wide tool for assessing cyber systems

CSET is available for download right here.

Thursday, September 29, 2011 @ 02:09 PM gHale

In honor of October being Cyber Security month, we will share again a new product called the Cyber Security Evaluation Tool (CSET) which can help organizations to properly secure their digital property.

Critical infrastructures depend on information technology systems and computer networks for essential operations and the reliability and resiliency of the systems.

With that in mind, the Department of Homeland Security’s National Cyber Security Division (NCSD), in collaboration with partners from across public, private, and international communities developed and coordinated security measures to protect against cyber threats.

RELATED STORIES
White House Invests in Smart Grid, Security
U.S. Outlines Cyber Security Plan
White House: Cyber Hits Down, But Not for Feds

That is where CSET comes in. The tool will assists organizations in protecting their key cyber assets.

Developed under the direction of the NCSD by cyber security experts, and with assistance from the National Institute of Standards and Technology (NIST), the tool provides users with a systematic and repeatable approach for assessing the security posture of their cyber systems and networks. The tool includes high-level and detailed questions related to all industrial control and IT systems.

CSET is a desktop software tool that guides users through a step-by-step process to assess their control system and information technology network security practices against recognized industry standards.

The output from CSET is a prioritized list of recommendations for improving the cyber security posture of the organization’s enterprise and industrial control cyber systems. The tool derives the recommendations from a database of cyber security standards, guidelines, and practices. Each recommendation links to a set of actions that can enhance cyber security controls.

CSET incorporates a variety of available standards from organizations such as NIST, North American Electric Reliability Corporation (NERC), International Organization for Standardization (ISO), U.S. Department of Defense (DoD), among others. When the user selects one or more of the standards, CSET will open a set of questions to answer. The answers to these questions will then go through the program and compare against a selected security assurance level. At that point a detailed report will show areas for potential improvement. CSET helps the user perform a self-assessment of the security posture of the control system environment.

Some of the benefits of the program:
• CSET contributes to an organization’s risk management and decision-making process
• Raises awareness and facilitates discussion on cyber security within the organization
• Highlights vulnerabilities in the organization’s systems and provides recommendations on ways to address the vulnerability
• Identifies areas of strength and best practices followed in the organization
• Provides a method to systematically compare and monitor improvement in the cyber systems
• Provides a common industry-wide tool for assessing cyber systems

Click here to download CSET. In addition, as an alternative to the downloadable version, a CSET DVD is available from the DHS, National Cyber Security Division. To request a copy, please send an email to: CSET@dhs.gov. Please insert “CSET” in the title block of the email and include your name, organization name, complete street address (no P.O. boxes), and phone number in your email request

In addition, as an alternative, the Control Systems Security Program (CSSP) also offers onsite training and guidance in using CSET during onsite assessments. These assessments are free. To assist an organization in planning and organizing for an assessment using the CSET, the following actions and items are recommended:
• Identify the assessment team members and schedule a date.
• Become familiar with information about the organization’s system and network by reviewing polices and procedures, network topology diagrams, inventory lists of critical assets and components, risk assessments, IT and ICS network policies/practices, and organizational roles and responsibilities.
• Select a meeting location to accommodate the assessment team during the question and answer portion of the assessment.
• Work with CSSP for onsite or subject matter support.

To request onsite assistance, send an email to cset@dhs.gov.

Tuesday, August 16, 2011 @ 03:08 PM gHale

Critical infrastructures depend on information technology systems and computer networks for essential operations and the reliability and resiliency of the systems.

With that in mind, the Department of Homeland Security’s National Cyber Security Division (NCSD), in collaboration with partners from across public, private, and international communities developed and coordinated security measures to protect against cyber threats.

RELATED STORIES
White House Invests in Smart Grid, Security
U.S. Outlines Cyber Security Plan
White House: Cyber Hits Down, But Not for Feds

That is where the Cyber Security Evaluation Tool (CSET) comes in. The tool is a Department of Homeland Security (DHS) product that assists organizations in protecting their key cyber assets.

Developed under the direction of the NCSD by cyber security experts, and with assistance from the National Institute of Standards and Technology (NIST), the tool provides users with a systematic and repeatable approach for assessing the security posture of their cyber systems and networks. The tool includes high-level and detailed questions related to all industrial control and IT systems.

CSET is a desktop software tool that guides users through a step-by-step process to assess their control system and information technology network security practices against recognized industry standards.

The output from CSET is a prioritized list of recommendations for improving the cyber security posture of the organization’s enterprise and industrial control cyber systems. The tool derives the recommendations from a database of cyber security standards, guidelines, and practices. Each recommendation links to a set of actions that can enhance cyber security controls.

CSET incorporates a variety of available standards from organizations such as NIST, North American Electric Reliability Corporation (NERC), International Organization for Standardization (ISO), U.S. Department of Defense (DoD), among others. When the user selects one or more of the standards, CSET will open a set of questions to answer. The answers to these questions will then go through the program and compare against a selected security assurance level. At that point a detailed report will show areas for potential improvement. CSET helps the user perform a self-assessment of the security posture of the control system environment.

Some of the benefits of the program:
• CSET contributes to an organization’s risk management and decision-making process
• Raises awareness and facilitates discussion on cyber security within the organization
• Highlights vulnerabilities in the organization’s systems and provides recommendations on ways to address the vulnerability
• Identifies areas of strength and best practices followed in the organization
• Provides a method to systematically compare and monitor improvement in the cyber systems
• Provides a common industry-wide tool for assessing cyber systems

Click here to download CSET. In addition, as an alternative to the downloadable version, a CSET DVD is available from the DHS, National Cyber Security Division. To request a copy, please send an email to: CSET@dhs.gov. Please insert “CSET” in the title block of the email and include your name, organization name, complete street address (no P.O. boxes), and phone number in your email request

In addition, as an alternative, the Control Systems Security Program (CSSP) also offers onsite training and guidance in using CSET during onsite assessments. These assessments are free. To assist an organization in planning and organizing for an assessment using the CSET, the following actions and items are recommended:
• Identify the assessment team members and schedule a date.
• Become familiar with information about the organization’s system and network by reviewing polices and procedures, network topology diagrams, inventory lists of critical assets and components, risk assessments, IT and ICS network policies/practices, and organizational roles and responsibilities.
• Select a meeting location to accommodate the assessment team during the question and answer portion of the assessment.
• Work with CSSP for onsite or subject matter support.
To request onsite assistance, send an email to cset@dhs.gov.

 
 
Archived Entries