DHS CISA Shares Incident Response Tool for On-Prem Threat Activity
Health IT Security
The Department of Health and Human Services Cybersecurity and Infrastructure Security Agency unveiled the CISA Hunt and Incident Response Program (CHIRP) tool, which is designed to support entities detect threat activity within on-prem environments.
CHIRP is a forensics collection tool that will help network defenders find indicators of compromise with two key threat areas: advanced persistent threat (APT) actor attacks tied to the SolarWind compromise and threat activity in Microsoft Cloud environments.
The extent of SolarWinds has continued to expand throughout the first quarter of 2021 impacting hundreds of entities across a range of sectors, including several federal agencies and some of the largest security firms.
Hackers exploited a...