CybersecurityManagementSecurity NewswireSecurity Leadership and ManagementLogical SecuritySecurity & Business ResilienceSecurity Education & TrainingCybersecurity News

CISA outlines 10 initial access points exploited by hackers

By Madeline Lauver
hacker
May 23, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) released an alert highlighting common initial access points for cybercriminals targeting networks.

The advisory, coauthored by cybersecurity agencies from the United States, Canada, New Zealand, the Netherlands and the United Kingdom, identified weak security strategies used by hackers attempting to gain network access.

  1. Weak or unenforced multi-factor authentication
  2. Errors within access privileges
  3. Outdated software
  4. Default security settings 
  5. Insufficient third-party security
  6. Weak password policies
  7. Unprotected cloud services
  8. Exposed open ports or misconfigurations
  9. Inadequate anti-phishing techniques
  10. Lacking endpoint detection and response

The alert recommended access control measures, credential hardening, software patching programs and more security measures for cybersecurity leaders to enact.

For more threat and mitigation techniques, click here.

KEYWORDS: cyber security initiatives cyber security threats hacking identity (ID) management initial access brokers (IABs) phishing

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Madeline Lauver is a former Editor in Chief at Security magazine. Within her role at Security, Lauver focused on news articles, web exclusives, features and several departments for Security’s monthly digital edition, as well as managing social media and multimedia content.

Related Articles

Events

View AllSubmit An EventView AllSubmit An Event

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!