💰💣

Cherry Bekaert Security Incident

31/12/2021 1361 days ago Resolved

Incident Overview

Situation Description

The TSA issued new security directives requiring airports and airline operators to implement cybersecurity measures in response to recent cyberattacks.

Event Types

Ransomware Malware / Destructive Attack

Industry Sector

Transportation

Geographic Scope

National (US)

Response Actions

Revised Incident Response Plan Hardened Attack Surface

Impact Analysis

Event Types (2 identified)

Ransomware Malware / Destructive Attack

Financial Impact

$0 USD

Records Affected

Primary Impacts

Operational Disruption

Key Decisions Made

Designate a cybersecurity coordinator.; Report cybersecurity incidents to CISA within 24 hours.; Develop and implement a cybersecurity incident response plan.

Technical Analysis

Attack Method

Unknown

Additional Information

Share this: Understand Which TSA Security Directives Must be Submitted by Airports before April 2022 Article February 17, 2022 Cybersecurity Government & Public Sector Risk & Cybersecurity Table of Contents Many airport and airline operators are being asked or required to comply with the Transportation Security Administrations (TSA) newest Security Directives to combat cybersecurity threats. The first step of compliance is registering a cybersecurity coordinator and alternate with the TSA by March 30, 2022. Why is the TSA Introducing New Security Directives? The Colonial Pipeline ransomware hack in May 2021, ceased operations of the pipeline for several days, driving gas shortages along the East Coast and leaving many airports with concerns on fuel reserves to maintain refueling operations. The pipeline hack coupled with the SolarWinds and Microsoft Exchange cyberattacks has driven the Department of Homeland Security (DHS) to confront the growing threat of cyberattacks by launching a series of 60-day cybersecurity-focused sprints to operationalize cybersecurity efforts and raise public awareness of key cybersecurity priorities. The DHS cybersecurity and transportation sprint resulted in the TSA issuing two new Security Directives and additional guidance to strengthen cybersecurity across the transportation sector. What are the New TSA Security Directives? The Security Directives require owners and operators to implement the following measures: Designate a cybersecurity coordinator. Report cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency (CISA) within 24 hours. Develop and implement a cybersecurity incident response plan. Complete a cybersecurity vulnerability assessment. Subscribe and stay on top of it all. Join our mailing list and be the first to receive alerts, newsletters and webinar invitations by email. Subscribe Who is Impacted by the New TSA Security Directives? The Security Directives became effective on December 31, 2021....

... (truncated for display)

Quick Facts

Company:: Cherry Bekaert
Date:: 31/12/2021
Status:: Resolved
Decision Maker:: TSA
Position:: nan
Published:: 17/02/2022

Source Information

Original Query

TSA pipeline security directive implementation audit reports post-Colonial attack

View Original Source

Timeline

Information Published

17/02/2022

Incident Occurred

31/12/2021 (1361 days ago)

Status: Resolved

Estimated resolution based on age

Actions

View Company Profile

Navigation

Quick Stats