CISA highlights best access control practices following breach impacting state government entity

The Cybersecurity and Infrastructure Security Agency is providing details on how to maintain secure access and authorization controls in a new advisory produced with the Multi-State Information Sharing and Analysis Center that goes into depth on a recent incident impacting a state government organization.

CISA and the MS-ISAC “conducted an incident response assessment of a state government organization’s network environment after documents containing host and user information, including metadata, were posted on a dark web brokerage site,” according to a...