Techly NewsGet the app

Get the latest tech news

CISA Broke Into a US Federal Agency, No One Noticed For a Full 5 Months


A 2023 red team exercise by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) at an unnamed federal agency exposed critical security failings, including unpatched vulnerabilities, inadequate incident response, and weak credential management, leading to a full domain compromise. Accord...

It's worth noting that CVE-2022-21587, an unauthenticated remote code execution (RCE) bug carrying a near-maximum 9.8 CVSS rating, was added to CISA's known exploited vulnerability (KEV) catalog in February 2023. Undeterred, CISA managed to make its way into the Windows network after carrying out phishing attacks on unidentified members of the target agency, one of which was successful. After gaining that access, the red team injected a persistent RAT and later discovered unsecured admin credentials, which essentially meant it was game over for the agency being assessed.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of months

months

Photo of CISA

CISA

Photo of Federal agency

Federal agency

Related news:

News photo

CISA broke into a US federal agency, and no one noticed for a full 5 months

News photo

CISA broke into a US federal agency, and no one noticed for a full 5 months

News photo

Amazon Prime members can get two months of Paramount+ with Showtime for only $12

« Show HN: 30ms latency screen sharing in Rust
Use a work journal »