NSA, CISA Warn Against Threats to 5G Network Slicing
Improper network slice management may enable attackers to access data from different network slices
The National Security Agency (NSA) is a U.S. intelligence authority whose guidance supports cybersecurity defense and cryptographic practice.
Search across headline titles and summaries.
Background for this topic.
NSA is the U.S. National Security Agency, responsible chiefly for signals intelligence (SIGINT)—collecting and analyzing foreign electronic communications and other signals—and for cybersecurity of U.S. national security systems. Its cybersecurity work includes cryptography, secure communications, technical standards and guidance, and coordinated advisories about threats and vulnerabilities. The tag may also cover the agency’s intelligence authorities and disclosures.
For practitioners, NSA advisories can provide threat indicators, exploit details, mitigations, and hardening advice, but their scope and authority matter: many recommendations target classified or other national-security systems rather than ordinary enterprise environments, and are not automatically legal or regulatory requirements. NSA activities can also raise privacy and governance questions around surveillance, vulnerability handling, and access to sensitive systems. Organizations should validate applicability, prioritize mitigations through vulnerability management, and protect NSA-derived threat intelligence and cryptographic guidance from unauthorized disclosure.
Improper network slice management may enable attackers to access data from different network slices
The feds' mobile service provider guidance details cybersecurity threat vectors associated with 5G network slicing.
The National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and the Office of the Director of National Intelligence (ODNI), have published a joint report that highlights the most likely risks and potential threats in 5G network slicing implementations. [...]
Yet more pain for the software formerly known as NetScaler The China-linked crime gang APT5 is already attacking a flaw in Citrix's Application Delivery Controller (ADC) and Gateway products that the vendor patched today.…
The U.S. National Security Agency (NSA) on Tuesday said a threat actor tracked as APT5 has been actively exploiting a zero-day flaw in Citrix Application Delivery Controller (ADC) and Gateway to take over affected systems
Citrix issues a critical update as NSA warns that the APT5 threat group is actively trying to target ADC environments.