The Canadian Centre for Cyber Security (Cyber Centre) has joined the United States’ (U.S.) Cybersecurity and Infrastructure Security Agency (CISA) and the following international partners in releasing cyber security guidance on enhanced visibility and hardening for communications infrastructure:
- U.S. Federal Bureau of Investigation (FBI)
- U.S. National Security Agency (NSA)
- Australian Signals Directorate’s (ASD) Australian Cyber Security Centre (ACSC)
- New Zealand’s National Cyber Security Centre (NCSC-NZ)
Along with our partners, we have observed network compromises to major global telecommunications by a People’s Republic of China (PRC)-affiliated threat actor.
This joint guidance provides best practices to strengthen visibility and harden devices against these compromises by PRC threat actors. The guidance is intended for network engineers and defenders of communications infrastructures. This guidance may also be applicable to organizations with on-premises equipment.
We urge software manufacturers to incorporate secure by design and by default principles into their software development lifecycle. These principles and configurations will strengthen customer security postures and eliminate the need for them to implement hardening guidelines.
Read more in the joint publication Enhanced Visibility and Hardening Guidance for Communications Infrastructure.