IFCPP - ASD’s ACSC, CISA, FBI, and NSA, With the Support of International Partners Release Best Practices for Event Logging and Threat Detection

INTERNATIONAL FOUNDATION FOR
CULTURAL PROPERTY PROTECTION

Log in

ASD’s ACSC, CISA, FBI, and NSA, With the Support of International Partners Release Best Practices for Event Logging and Threat Detection

September 02, 2024 3:22 PM | Anonymous

Reposted from EMR-ISAC

On Aug. 21, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), CISA, FBI, NSA, and international partners are releasing Best Practices for Event Logging and Threat Detection. This guide will assist organizations in defining a baseline for event logging to mitigate malicious cyber threats. The increased prevalence of malicious actors employing living off the land (LOTL) techniques, such as living off the land binaries (LOLBins) and fileless malware, highlights the importance of implementing and maintaining an effective event logging program. CISA encourages public and private sector senior information technology (IT) decision makers, operational technology (OT) operators, network administrators, network operators, and critical infrastructure organizations to review the best practices in the guide and implement recommended actions.

See Original Post

Contact Us