<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<base href="https://tripwire.atlassian.net"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Franklin Gothic Book";
panose-1:2 11 5 3 2 1 2 2 2 4;}
@font-face
{font-family:"Segoe UI";
panose-1:2 11 5 2 4 2 4 2 2 3;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
p.xxmsonormal, li.xxmsonormal, div.xxmsonormal
{mso-style-name:x_xmsonormal;
margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.xxparagraph, li.xxparagraph, div.xxparagraph
{mso-style-name:x_xparagraph;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.xxnormaltextrun
{mso-style-name:x_xnormaltextrun;}
span.xxeop
{mso-style-name:x_xeop;}
span.xxspellingerror
{mso-style-name:x_xspellingerror;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:23798019;
mso-list-template-ids:917373138;}
@list l0:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level2
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level5
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level8
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1
{mso-list-id:214003186;
mso-list-template-ids:1959147048;}
@list l1:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level2
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level5
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level8
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2
{mso-list-id:799223230;
mso-list-template-ids:589753496;}
@list l2:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level2
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level5
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level8
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3
{mso-list-id:1298682316;
mso-list-template-ids:-1856233836;}
@list l3:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level2
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level5
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level8
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l3:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal">FYSA<o:p></o:p></p>
<div>
<div>
<p class="xxparagraph" style="mso-margin-top-alt:5.0pt;margin-right:3.0pt;margin-bottom:0in;margin-left:0in;vertical-align:baseline">
<span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline;white-space:pre-wrap;font-kerning:none">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">The Cybersecurity and Infrastructure Security Agency (CISA) announced a
</span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.cisa.gov/uscert/ncas/alerts/aa22-131a" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">joint
Cybersecurity Advisory</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif;color:blue">
</span></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">that
<span style="color:#030303">urges managed service providers (MSPs) and customers to adopt a shared commitment to security and implement baseline measures and controls. Published
</span>in partnership with cybersecurity authorities of the </span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.ncsc.gov.uk/" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">United
Kingdom</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">,
</span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.cyber.gov.au/" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">Australia</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">,
</span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://cyber.gc.ca/en/" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">Canada</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">,
</span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.ncsc.govt.nz/" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">New
Zealand</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">, Federal Bureau of Investigation (</span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.fbi.gov/investigate/cyber" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">FBI</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">),
and National Security Agency (</span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.nsa.gov/Cybersecurity/" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">NSA</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">),
with contributions from industry members of the </span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.cisa.gov/jcdc" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">Joint
Cyber Defense Collaborative (JCDC)</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">, this advisory warns that m<span style="color:#030303">alicious cyber actors continue to target MSPs, which
is why organizations should implement the recommended actions, as appropriate for their unique environment and security needs, to strengthen protection of sensitive data and networks. </span></span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif;color:#030303"> </span></span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline"><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"> </span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline"><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">CISA, NCSC-UK, ACSC, CCCS, NZ-NCSC, NSA, and FBI expect malicious cyber actors, including</span></span><span class="xxnormaltextrun"><span style="font-family:"Arial",sans-serif">
</span></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">state-sponsored advanced persistent threat (APT) groups</span></span><span class="xxnormaltextrun"><span style="font-family:"Arial",sans-serif">,
</span></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">to continue their targeting of MSPs. Some tactical actions to improve security that MSPs and their customers can take today are:</span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></p>
<ul style="margin-top:0in" type="disc">
<li class="xxparagraph" style="margin-top:0in;margin-bottom:0in;mso-list:l2 level1 lfo3;vertical-align:baseline">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Identify and disable accounts that are no longer in use.</span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></li><li class="xxparagraph" style="margin-top:0in;margin-bottom:0in;mso-list:l2 level1 lfo3;vertical-align:baseline;overflow:visible">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Enforce MFA on MSP accounts that access the customer environment and monitor for unexplained failed authentication.</span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></li><li class="xxparagraph" style="margin-top:0in;margin-bottom:0in;mso-list:l2 level1 lfo3;vertical-align:baseline;overflow:visible">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Ensure MSP-customer contracts transparently identify ownership of ICT security roles and responsibilities.</span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></li></ul>
<p class="xxparagraph" style="mso-margin-top-alt:5.0pt;margin-right:31.5pt;margin-bottom:0in;margin-left:0in;vertical-align:baseline;white-space:pre-wrap;font-kerning:none">
<span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">The advisory provides several measures that organizations can take to reduce
their risk of becoming a victim to malicious cyber activity. Additionally, MSP customers should verify their contractual arrangements with the provider include measures and controls in this advisory according to their security requirements, such as:</span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></p>
<ul style="margin-top:0in" type="disc">
<li class="xxparagraph" style="margin-top:0in;margin-bottom:0in;mso-list:l3 level1 lfo6;vertical-align:baseline">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Prevent initial compromise by implementing mitigation resources to protect initial compromise attack methods from vulnerable devices, internet-facing services, brute force
and password spraying, and phishing. </span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></li><li class="xxparagraph" style="margin-top:0in;margin-bottom:0in;mso-list:l3 level1 lfo6;vertical-align:baseline;overflow:visible">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Enable monitoring and logging, including storage of most important logs for at least six months, and implement endpoint detection and network defense monitoring capabilities
in addition to using application </span></span><span class="xxspellingerror"><span style="font-family:"Franklin Gothic Book",sans-serif">allowlisting</span></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">/</span></span><span class="xxspellingerror"><span style="font-family:"Franklin Gothic Book",sans-serif">denylisting</span></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">. </span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></li><li class="xxparagraph" style="margin-top:0in;margin-bottom:0in;mso-list:l3 level1 lfo6;vertical-align:baseline;overflow:visible">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Develop and exercise incident response and recovery plans, which should include roles and responsibilities for all organizational stakeholders, including executives, technical
leads, and procurement officers. </span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></li><li class="xxparagraph" style="margin-top:0in;margin-bottom:0in;mso-list:l3 level1 lfo6;vertical-align:baseline;overflow:visible">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Understand and proactively manage supply chain risk across security, legal, and procurement groups, using risk assessments to identify and prioritize the allocation of
resources.</span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></li></ul>
<p class="xxparagraph" style="mso-margin-top-alt:5.0pt;margin-right:31.5pt;margin-bottom:0in;margin-left:0in;vertical-align:baseline;white-space:pre-wrap;font-kerning:none">
<span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline;white-space:pre-wrap;font-kerning:none">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">In addition to
</span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="https://www.cisa.gov/uscert/ncas/alerts/aa22-131a" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">reviewing
the advisory</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif"> for complete list of recommended measures and controls, CISA reminds critical infrastructure executives and senior leaders to review
our “Shields Up” webpage at </span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="http://www.cisa.gov/shields-up" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">www.cisa.gov/shields-up</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">. </span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline;white-space:pre-wrap;font-kerning:none">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline"><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">Also,
<span style="color:#030303">organizations should share information on incidents and unusual activity to CISA 24/7 Operations Center at
</span></span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="mailto:report@cisa.gov" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">report@cisa.gov</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif;color:#030303">
or (888) 282-0870 and/or to the FBI via your local FBI field office or the FBI’s 24/7
</span></span><span class="xxspellingerror"><span style="font-family:"Franklin Gothic Book",sans-serif;color:#030303">CyWatch</span></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif;color:#030303"> at (855) 292-3937
or </span></span><span style="font-size:9.0pt;font-family:"Segoe UI",sans-serif"><a href="mailto:CyWatch@fbi.gov" target="_blank"><span class="xxnormaltextrun"><span style="font-size:11.0pt;font-family:"Franklin Gothic Book",sans-serif;text-decoration:none">CyWatch@fbi.gov</span></span></a></span><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif;color:#030303">. </span></span><span class="xxeop"><span style="font-family:"Franklin Gothic Book",sans-serif;color:#030303"> </span></span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline;white-space:pre-wrap;font-kerning:none">
<span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif"> </span></span><o:p></o:p></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline"><span class="xxnormaltextrun"><span style="font-family:"Franklin Gothic Book",sans-serif">We appreciate you sharing this information and/or amplifying with your cybersecurity community. CISA
and other partners are posting information about our joint advisory on their social media platforms. <o:p></o:p></span></span></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline"><span class="xxeop"><o:p> </o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><b><span style="color:#1F497D">Theresa A. Masse<o:p></o:p></span></b></p>
<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Cyber Security Advisor, Region 10 (Oregon)
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Cybersecurity and Infrastructure Security Agency<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Department of Homeland Security<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Phone: (503) 930-5671
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;color:#1F497D">Email:</span><span style="font-size:10.0pt;color:#777777">
</span><a href="mailto:theresa.masse@cisa.dhs.gov"><span style="font-size:10.0pt;color:#0563C1">theresa.masse@cisa.dhs.gov</span></a><u><span style="font-size:10.0pt;color:#0760C1"><o:p></o:p></span></u></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><img border="0" width="97" height="97" style="width:1.0138in;height:1.0138in" id="Picture_x0020_1" src="cid:image002.png@01D86506.1CB1C090"><span style="color:#1F497D"><o:p></o:p></span></p>
<p class="xxparagraph" style="margin:0in;vertical-align:baseline"><o:p> </o:p></p>
<p align="center" style="mso-margin-top-alt:5.0pt;margin-right:0in;margin-bottom:0in;margin-left:1.0in;text-align:center">
<o:p></o:p></p>
<p class="xxmsonormal"><span style="font-size:1.0pt;font-family:"Arial",sans-serif;color:#333333"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-size:1.0pt;font-family:"Arial",sans-serif;color:#333333"><o:p> </o:p></span></p>
</div>
</body>
</html>