The voluntary goals aim to provide a security baseline, in particular for small- and medium-sized critical infrastructure organizations.
The Daixin group has been targeting healthcare organizations with double extortion ransomware attacks, U.S. government agencies warned.
Attackers are eyeing known vulnerabilities in the Zimbra collaboration suite to target government and private sector organizations.
APT teams are still exploiting the Log4Shell flaw in VMware Horizon and Unified Access Gateway, six months after the initial disclosure.
The Karakurt data extortion group is stealing sensitive information from enterprises and holding it for ransom, CISA warns.