TLDR:
- CISA and the FBI have released joint guidance warning about the cybersecurity risks posed by Chinese-manufactured drones.
- The guidance identifies potential vulnerabilities, such as data transfer and collection, as well as the consequences of a lack of cybersecurity protocols.
- CISA and the FBI recommended four UAS cybersecurity measures for planning and design, procurement, maintenance, and operation.
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have jointly released guidance warning of the cybersecurity risks associated with Chinese-manufactured unmanned aircraft systems (UAS), also known as drones. The guidance highlights potential vulnerabilities, including data transfer and collection, and the consequences of inadequate cybersecurity protocols. The agencies have recommended four cybersecurity measures for UAS, covering planning and design, procurement, maintenance, and operation. They advise critical infrastructure organizations to use UAS that are secure-by-design and manufactured by US companies. The guidance aims to protect against unauthorized access to systems and data, with a particular focus on safeguarding national security and public safety.