NIST OWM had the pleasure and opportunity to attend the New York State Annual Weights and Measures Association and Training School the week of June 12-16, held in Syracuse. The New York State weights and measures system is multifaceted in its

As the NIST OWM Chief, I am very pleased to announce the completion and launch of the OWM Strategic Plan (FY2023 – FY2027). OWM has a long-standing history in U.S. and international weights and measures and serves as one of several outward facing

Charming Kitten, the nation-state actor affiliated with Iran’s Islamic Revolutionary Guard Corps (IRGC), has been attributed to a bespoke spear-phishing campaign that delivers an updated version of a fully-featured PowerShell backdoor called POWERSTAR.
“There have been improved operational security measures placed in the malware to make it more difficult to analyze and collect intelligence,”

CISA is aware of open-source reporting of targeted denial-of-service (DoS) and distributed denial-of-service (DDoS) attacks against multiple organizations in multiple sectors. These attacks can cost an organization time and money and may impose reputational costs while resources and services are inaccessible.

If you think you or your business is experiencing a DoS or DDoS attack, it is important to contact the appropriate technical professionals for assistance.

• Contact your network administrator to confirm whether the service outage is due to maintenance or an in-house network issue. Network administrators can also monitor network traffic to confirm the presence of an attack, identify the source, and mitigate the situation by applying firewall rules and possibly rerouting traffic through a DoS protection service.
• Contact your internet service provider to ask if there is an outage on their end or if their network is the target of an attack and you are an indirect victim. They may be able to advise you on an appropriate course of action.

Organizations can take proactive steps to reduce the effects of an attack—See the following guidance for more information:

• Understanding and Responding to Distributed Denial-of-Service Attacks
• Additional DDoS Guidance for Federal Agencies