CERT mailing list archives

Previous By Date Next
Previous By Thread Next

NSA Releases Guidance on Mitigating Cloud Vulnerabilities

From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Fri, 24 Jan 2020 10:12:12 -0600
Cybersecurity and Infrastructure Security Agency Logo

National Cyber Awareness System:



NSA Releases Guidance on Mitigating Cloud Vulnerabilities [ 
https://www.us-cert.gov/ncas/current-activity/2020/01/24/nsa-releases-guidance-mitigating-cloud-vulnerabilities ] 
01/24/2020 09:47 AM EST 
Original release date: January 24, 2020

The National Security Agency (NSA) has released an information sheet with guidance on mitigating cloud vulnerabilities. 
NSA identifies cloud security components and discusses threat actors, cloud vulnerabilities, and potential mitigation 
measures.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages administrators and users to review NSA's 
guidance on Mitigating Cloud Vulnerabilities [ 
https://media.defense.gov/2020/Jan/22/2002237484/-1/-1/0/CSI-MITIGATING-CLOUD-VULNERABILITIES_20200121.PDF ] and CISAs 
page on APTs Targeting IT Service Provider Customers [ 
https://www.us-cert.gov/APTs-Targeting-IT-Service-Provider-Customers ] and Analysis Report on Microsoft Office 365 and 
other Cloud Security Observations [ https://www.us-cert.gov/ncas/analysis-reports/AR19-133A ] for information on 
implementing a defense-in-depth strategy to protect infrastructure assets.

This product is provided subject to this Notification [ https://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ https://www.dhs.gov/privacy-policy ] policy.

body { font-size: 1em; font-family: Arial, Verdana, sans-serif; font-weight: normal; font-style: normal; color: 
#333333; } ________________________________________________________________________

A copy of this publication is available at www.us-cert.gov [ https://www.us-cert.gov ]. If you need help or have 
questions, please send an email to info () us-cert gov. Do not reply to this message since this email was sent from a 
notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT () 
ncas us-cert gov to your address book. 

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ]  

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Previous By Date Next
Previous By Thread Next

Current thread: