CISA (Cybersecurity and Infrastructure Security Agency) has compiled a list of free cybersecurity tools and services to help organizations reduce the likelihood of cyberattacks.
The list includes cybersecurity services provided by CISA, widely used open-source tools, and free tools and services offered by private and public sector organizations across the cybersecurity community.
CISA will continue updating the list to help critical infrastructure partners, state, local, tribal, and territorial governments reduce the likelihood of a damaging cyber incident, detect malicious activity, respond to confirmed incidents, and strengthen resilience.
The federal agency insisted it does not endorse any of the commercial products or services referred to in the list and does not attest to their suitability or effectiveness for any particular use case.
First, the agency recommends all organizations implement basic measures to improve their cybersecurity posture. The recommendations include fixing the known software vulnerabilities, implementing multi-factor authentication (MFA) where possible, replacing software that is no longer updated, and getting rid of systems or products with default or unchangeable passwords.
“After making progress on the measures above, organizations can use the free services and tools listed below to mature their cybersecurity risk management.”
CISA divides its list into four categories: reducing the likelihood of a damaging cyber incident, detecting malicious activity quickly, responding effectively to confirmed incidents, maximizing resilience.
First, the agency recommends all organizations implement basic measures to improve their cybersecurity posture. The recommendations include fixing the known software vulnerabilities, implementing multi-factor authentication (MFA) where possible, replacing software that is no longer updated, and getting rid of systems or products with default or unchangeable passwords.
CISA constantly warns organizations and governments about potential threats. In January, the FBI, the NSA, and CISA warned the cybersecurity community to adopt a ‘heightened state of awareness,’ especially concerning the defense of critical infrastructure, amidst strained relations between the US and Russia over security concerns in Europe.
More from CyberNews:
If privacy is your crown jewel, why do you exchange it for shiny objects then?
Less than 50% of BYO digital devices properly secured at work, study says
Workers exploit account access to harm former employers
The first time police snooped inside digital storage
US armed forces must root out unknown threats to win cyberwar, says ex serviceman
Subscribe to our newsletter
