A strong finish to #TechNetCyber. Daniel McCormack, Chief Operations Officer of NSA’s Cybersecurity Directorate, shared insights on the evolving cyber landscape, innovation, and the partnerships that help strengthen our collective defense. #CyberDefense

Malicious cyber threat actors are targeting internet-exposed ATG systems in the United States. Review our joint fact sheet for TTPs and recommendations to protect your systems. 👉 go.dhs.gov/5Sz

NSA’s ZIG webpage is now live! We are providing accessible resources for enhancing enterprise cybersecurity with Zero Trust. To learn more, visit the ZIG webpage. nsa.gov/Cybersecurity/ZIG/

NSA is releasing security design considerations for AI-driven automation leveraging MCP which, while simplifying the integration of diverse capabilities into powerful agent workflows, requires caution. Learn more: nsa.gov/Portals/75/documents…

Better understand agentic AI systems and mitigate the cybersecurity risks using a new guide we authored with @ASDGovAu and others. View the joint report. #Cybersecurity #AgenticAI media.defense.gov/2026/Apr/3…

NSA joins the @NCSC and others in releasing joint guidance detailing multiple China-nexus threat actors who are using dynamic, external covert networks of botnets to facilitate malicious cyber activity strategically at scale. Read the report today! media.defense.gov/2026/Apr/2…

If you haven’t already, we encourage organizations using LEO SATCOM systems to review our recent guidance and deploy the recommended strategies to mitigate the unique cybersecurity challenges these systems face. media.defense.gov/2026/Mar/2…

Iran-affiliated cyber actors are targeting operational technology devices across US critical infrastructure, including programmable logic controllers (PLCs). These attacks have led to diminished PLC functionality, manipulation of display data and, in some cases, operational disruption and financial loss. The @FBI, @CISAGov, @NSAgov, @EPA, @ENERGY and @US_CYBERCOM are urging US organizations—especially municipalities and those in the water and energy sectors—to review the tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) detailed in this advisory. Applying the recommended mitigations will reduce the risk of compromise: ic3.gov/CSA/2026/260407.pdf

Russian GRU cyber actors are exploiting vulnerable routers worldwide to intercept sensitive military, government, and critical infrastructure information. The @FBI, @NSAgov and 21 international parties across 15 countries have released a #PSA detailing GRU techniques and providing defensive guidance. We urge all network defenders and owners of small office/home office (SOHO) routers to update to the latest firmware versions, change default usernames and passwords, disable remote management interfaces from the internet, and stay alert for certificate warnings in web browsers and email clients. ic3.gov/PSA/2026/PSA260407

NSA supports @FBI PSA on Russian GRU cyber actors exploiting routers. Take action today to stay secure. To learn more and for best practices, read NSA’s press release. nsa.gov/Press-Room/Press-Rel… #Cybersecurity #NSA #NetworkDefense #RouterSecurity

We are joining @ASDGovAu to highlight the key cybersecurity risks and corresponding mitigation strategies when using LEO SATCOM systems. To gain a better understanding of the risks and mitigations, view our joint report. #Cybersecurity media.defense.gov/2026/Mar/2…

Malicious actors are exploiting Cisco Catalyst SD-WAN technology to access global networks. Review our new joint Hunt Guide for details on detections and mitigation techniques and take immediate action to reduce risks to your networks. nsa.gov/Press-Room/Press-Rel…

ZIG Phase 1 & Phase 2 are here! Review these ZIGs for information on how to map out maturing your networks’ ZT implementation to the Target level. nsa.gov/Press-Room/Press-Rel…

Improper Secure Boot configuration could be putting your organizations at a greater risk of exposure to threats. Our guidance outlines how to check for proper configuration and recover if needed. Review here! 🔗media.defense.gov/2025/Dec/1…

If you haven’t yet, review the recent joint CSA for mitigation strategies to protect your organization’s OT control devices from attacks pro-Russia hacktivist groups are conducting against critical infrastructure. 🔗media.defense.gov/2025/Dec/0…

NSA’s recent report with @CISACyber & @cybercentre_ca warns of Chinese state-sponsored actors using BRICKSTORM malware for long-term persistence on victim systems. Review the report to learn about the IOCs & detection signatures associated with this activity.

Critical infrastructure owners and operators should be aware of the risks and benefits associated with adopting AI into OT environments. Review our recent joint CSI for guidance on safe and secure integration of AI into OT systems. media.defense.gov/2025/Dec/0…