Sunday, February 9, 2025
HomeCyber Security NewsCISA Releases New Guidelines to Secure Firewalls, Routers, and Internet-Facing Servers

CISA Releases New Guidelines to Secure Firewalls, Routers, and Internet-Facing Servers

Published on

SIEM as a Service

Follow Us on Google News

The Cybersecurity and Infrastructure Security Agency (CISA) has unveiled a new set of guidelines to fortify firewalls, routers, internet-facing servers, and other edge devices against cyber threats.

This collaborative guidance, supported by leading international cybersecurity organizations, aims to address vulnerabilities in hardware that form the backbone of critical infrastructure and operational networks worldwide.

Edge devices—like firewalls, routers, Virtual Private Network (VPN) gateways, Internet of Things (IoT) devices, and operational technology (OT) systems—are prime targets for cyberattacks due to their pivotal role in network security and connectivity.

The new guidelines are designed to help organizations secure these devices through robust practices, real-world mitigations, and product design recommendations.

Key Components of the Guidance

Security Considerations for Edge Devices

The Canadian Centre for Cyber Security (CCCS) led efforts to outline the threats and vulnerabilities commonly exploited in edge devices.

This section offers real-world case studies of device compromises and actionable mitigation strategies for administrators.

It also provides design principles for manufacturers to build secure devices by design, reducing the risk of compromise from the outset.

Digital Forensics and Monitoring Specifications

In a joint effort with the UK’s National Cyber Security Centre (NCSC-UK), CISA provides guidance on incorporating necessary security logging and remote data collection capabilities into network devices.

These features, which should ideally be pre-configured, enable organizations to detect and investigate cyber intrusions more effectively, helping them respond faster to threats.

The Australian Cyber Security Centre (ACSC) contributed two sets of strategic documents targeting different audiences:

  • Executive Guidance outlines high-level measures organizations can adopt to secure and manage edge devices effectively.
  • Practitioner Guidance provides a detailed roadmap of seven technical mitigation strategies for procurement teams, operational personnel, and cybersecurity experts to implement on-the-ground protections for edge devices.

CISA’s guidelines encourage device manufacturers to align their development processes with secure-by-design principles.

Manufacturers are directed to CISA’s Secure by Design page for practical insights into reducing vulnerabilities during development.

Critical infrastructure operators are also advised to refer to “Secure by Demand” considerations when acquiring digital products to ensure long-term security resilience.

These guidelines mark a significant step in safeguarding critical network infrastructure and raising global cybersecurity standards.

With collaboration between CISA, CCCS, NCSC-UK, and ACSC, organizations now have a comprehensive resource to protect their edge devices, mitigate risks, and enhance their readiness to face evolving cyber threats.

Investigate Real-World Malicious Links & Phishing Attacks With Threat Intelligence Lookup - Try for Free

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

UK Pressures Apple to Create Global Backdoor To Spy on Encrypted iCloud Access

United Kingdom has reportedly ordered Apple to create a backdoor allowing access to all...

Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning...

Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is...

Cybercriminals Target IIS Servers to Spread BadIIS Malware

A recent wave of cyberattacks has revealed the exploitation of Microsoft Internet Information Services...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

UK Pressures Apple to Create Global Backdoor To Spy on Encrypted iCloud Access

United Kingdom has reportedly ordered Apple to create a backdoor allowing access to all...

Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning...

Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is...