The Cybersecurity and Infrastructure Security Agency (CISA) – alongside the National Security Agency (NSA) and National Institute of Standards and Technology (NIST) – released a joint factsheet today encouraging early planning for migration to post-quantum cryptographic standards by developing a Quantum-Readiness Roadmap. “Quantum-Readiness: Migration to Post-Quantum Cryptography” is urging organizations – especially those that support critical infrastructure […]
The Cybersecurity and Infrastructure Security Agency (CISA) is looking to change the technology ecosystem through its secure-by-design and -default guidelines, and CISA officials explained the agency’s plan to foster this ecosystem at the Black Hat USA Conference in Las Vegas last week. […]
The Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC) today published the Cyber Defense Plan for Remote Monitoring and Management (RMM), making it the first-ever plan developed by industry and government partners through the JCDC. […]
The Cybersecurity and Infrastructure Security Agency (CISA) has led a handful of identity security initiatives over the past year, and, according to a CISA official, is closing in on finalized guidance on recommended cybersecurity configuration baselines for select cloud products – like Microsoft 365 and Google Workspace. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is launching a new program that will collect information to provide tailored technical assistance, services, and resources to critical infrastructure (CI) organizations and state, local, Tribal, and territorial (SLTT) governments. […]
The head of the Cybersecurity and Infrastructure Security Agency (CISA) said this week that the United States needs to take a page out of Ukraine’s cyber playbook and build more resiliency into its critical infrastructure now. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is looking to utilize AI capabilities to keep Americans safe from cyber threats and bolster the nation’s cyber defense, CISA Director Jen Easterly said this week. […]
Faced with increasing cyberattacks on K-12 schools, the Biden-Harris administration today unveiled several government actions to help bolster their cyber defenses, along with numerous commitments from private-sector organizations that aim for the same result. […]
The Cybersecurity and Infrastructure Security Agency (CISA) today debuted its cyber plan for the next three years, noting that the agency’s planning document builds on the White House’s National Cybersecurity Strategy released earlier this year. […]
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), the FBI, and international cybersecurity agencies issued a joint cybersecurity advisory on August 3 warning organizations of common vulnerabilities and exposures (CVEs) that were frequently exploited by malicious actors in 2022. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released the latest version of its Risk and Vulnerability Assessments (RVA) report, which found that threat actors had the most attack success through “common methods” such as phishing techniques in fiscal year (FY) 2022. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is planning to hold a virtual industry day event on August 15 to discuss its Joint Collaborative Environment (JCE) – a recently established effort that aims to enhance CISA’s industry partnerships and enrich cyber threat data. […]
Microsoft cloud service customers will now have access to expanded cloud logging capabilities at no additional cost, thanks to a new collaborative partnership announced today between the tech company and the Cybersecurity and Infrastructure Security Agency (CISA). […]
The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) released new guidance on July 17 that provides recommendations to protect against threats to 5G standalone network slicing. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is rolling out its Joint Collaborative Environment (JCE) project in an effort to enhance its industry partnerships and enrich its cyber threat data. […]
Microsoft said late Tuesday that it took action in recent weeks to mitigate China-based cyberattacks that exposed email account information of government agencies and other organizations, along with customer accounts of people tied to those agencies and organizations. […]
The Cybersecurity and Infrastructure Security Agency (CISA) said the agency is surpassing its own target for the rate at which Federal agencies are using automated Continuous Diagnostics and Mitigation (CDM) program reporting. […]
The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) component is working every day to reduce risks to the cyber and physical infrastructure that Americans rely on – but CISA Director Jen Easterly said today that effort relies on public-private partnership to help mitigate those risks through technological innovation. […]
The Cybersecurity and Infrastructure Security Agency (CISA), along with the Federal Bureau of Investigation (FBI) and the Canadian Centre for Cyber Security (CCCS), released a new Cybersecurity Advisory (CSA) on July 6 warning against Truebot malware variants. […]
The Cybersecurity and Infrastructure Security Agency (CISA) has appointed two new senior leaders, Andrew Scott and David Carroll, to the agency’s cybersecurity division. […]
The Cybersecurity and Infrastructure Security Agency said its Cybersecurity Advisory Committee (CSAC) is renewing the charter for the 35-member committee through May 2025. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is looking to add a “select number” of critical infrastructure (CI) partnerships with industry to its CyberSentry program, CISA Associate Director for Threat Hunting Jermaine Roebuck wrote in a June 29 blog post. […]
The Cybersecurity and Infrastructure Security Agency (CISA) announced today that Kim Wyman, its top election security official, plans to step down from her post at the end of July after nearly two years with the agency. […]
The Cybersecurity and Infrastructure Security Agency (CISA) plans to release a training program to help Federal agencies better understand and operationalize cyber supply chain risk management (C-SCRM), CISA’s C-SCRM Project Management Office Lead said today. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released the first series of final security guidance resources under its Secure Cloud Business Applications (SCuBA) project today. […]
The Cybersecurity and Infrastructure Security Agency (CISA) held its second quarter Cybersecurity Advisory Committee (CSAC) meeting on June 22, where subcommittee chairs shared progress updates on their work. […]
A cyberattack has impacted several Federal agencies, who have experienced intrusions affecting their MOVEit applications, according to the Cybersecurity and Infrastructure Security (CISA). […]
The Cybersecurity and Infrastructure Security Agency’s (CISA) binding operational directive (BOD) issued this week is a “step in the right direction,” according to industry leaders, who are eager to see its effectiveness in protecting network management interfaces from the public-facing internet. […]
The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and a host of overseas cybersecurity authorities today published a joint cybersecurity advisory on the threat posed by LockBit ransomware. […]
A senior Cybersecurity and Infrastructure Security Agency (CISA) official offered his look toward the enduring nature of identity-based network security technologies during a discussion today at the Okta City Tour and Gov Identity Summit in Washington. […]