SecurityWeek reports that the Cybersecurity and Infrastructure Security Agency has updated its Infrastructure Resilience Planning Framework with new tools and recommendations aimed at helping state, local, tribal, and territorial organizations strengthen critical infrastructure resiliency amid increasing threats.
CISA has integrated new critical infrastructure identification tools within the updated framework's Datasets for Critical Infrastructure Identification guide.
"This dataset provides users with guidance on how and where to find publicly accessible geospatial information system (GIS) on critical infrastructure assets via the Homeland Infrastructure Foundation-Level Data (HIFLD) site, as well as several other GIS sites," said CISA, which has also introduced updated drought resilience information in the framework.
CISA Infrastructure Security Director David Mussington said that the new additions would bolster planning for future threats.
"Our collaborative approach with industry and interagency partners enabled CISA to improve the IRPF, which will help the SLTT planning community reduce risks and strengthen resilience," Mussington added.
Malware-free intrusions have become the leading cybersecurity threat against small- to medium-sized businesses, accounting for 56% of all cyber incidents during the third quarter, SiliconAngle reports.
Threat actors have been distributing a new Agent Tesla malware variant in attacks leveraging a lure file with the ZPAQ file compression format with improved compression ratios and journaling functionality over the RAR and ZIP formats, according to The Hacker News.