FORT MEADE, Md. – Legitimate remote access software is being used by cyber actors to access victims’ systems, blend in with regular network activities, and evade detection.
To guide network administrators and defenders on best practices and how to mitigate this malicious activity, the National Security Agency (NSA) has joined with coauthors in publicly releasing the “Guide to Securing Remote Access Software” Cybersecurity Information Sheet (CSI).
The coauthoring agencies include NSA, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Multi-State Information Sharing & Analysis Center (MS-ISAC), and the Israel National Cyber Directorate (INCD).