CISA has released a new document to help organizations improve monitoring and hardening of networks. This describes the lessons learned from a red team assessment of a large critical infrastructure organization with a mature cyber posture.
‘CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks’ details the red team’s tactics, techniques, and procedures and key findings to provide network defenders with proactive steps to reduce the threat of similar activity from malicious cyber actors.
The CISA red team obtained persistent access to the organization’s network, moved laterally across multiple geographically separated sites, and gained access to systems adjacent to the organization’s sensitive business systems.