The?Cybersecurity and Infrastructure Security Agency (CISA) said late Wednesday that it has accepted in whole or in part 29 recommendations put forth by its Cybersecurity Advisory Committee (CSAC), which was created to provide cybersecurity recommendations to CISA Director Jen Easterly.
Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly today announced the appointment of new members to the CISA Cybersecurity Advisory Committee (CSAC), who will help advise her on policies and initiatives to bolster the nation’s cybersecurity posture. The announcement comes just in time for the committee’s next meeting, which will be held virtually tomorrow, […]
The Cybersecurity and Infrastructure Security Agency (CISA) is expanding its Mobile App Vetting (MAV) beta service that allows the agency to help combat the use of “bad applications” that can expose cybersecurity flaws for agencies.
The Cybersecurity and Infrastructure Security Agency said on March 15 that multiple attackers were able to compromise a system at one unnamed Federal civilian executive branch agency from November 2022 to January 2023, and issued an advisory for other organizations to take action to mitigate any similar vulnerability.
The Cybersecurity and Infrastructure Security Agency (CISA) announced on Monday its new Ransomware Vulnerability Warning Pilot (RVWP) to warn critical infrastructure entities of vulnerabilities commonly associated with known ransomware exploitation.
As agencies begin work to implement the Biden administration’s brand new national cyber strategy, the chief information officer (CIO) of the Cybersecurity and Infrastructure Security Agency (CISA) said he’s most excited that the strategy calls on the Federal government to diversify the cybersecurity workforce.
The Cybersecurity and Infrastructure Security Agency (CISA) is considering letting a three-year consulting contract that will help the agency develop strategies against new and emerging technologies.
Rep. Mark Green, R-Tenn., the newly installed chairman of the House Homeland Security Committee, said he wants to help the Cybersecurity and Infrastructure Security Agency (CISA) strengthen its role as an “information enabler,” but at the same time said he is wary of the agency taking more of a “regulatory approach” to its mission.
A top official at the Cybersecurity and Infrastructure Security Agency (CISA) said that we can expect to see “much more” guidance from agency cyber gurus in the coming months on Cybersecurity Supply Chain Risk Management (C-SCRM).
Daniel Bardenstein, the Cybersecurity and Infrastructure Security Agency’s (CISA) Chief of Technology Strategy and Delivery, said on Jan. 18 he will be stepping down from his post at the cyber defense agency.
As open source tools and software are becoming a more integral part of the government’s technology base, a host of agencies are at work formulating strategies to take best advantage of that trend, according to Allan Friedman, senior advisor and strategist at the Cybersecurity and Infrastructure Security Agency (CISA)
The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) co-chaired the second meeting of their Joint Ransomware Task Force (JRTF) on Dec. 14, with a CISA leader saying that the task force effort is yielding “unifying” effects in the fight against ransomware-driven cyber attacks.
A consortium of universities is leveraging Federal grants to produce research on the “nexus” of terrorism and cybersecurity, one top academic said at Splunk’s GovSummit on Dec. 14.
Top officials at the Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC) are “demystifying” how the Federal government maintains critical infrastructure security and resiliency by partnering and sharing information with organizations across the globe, panelists said at Splunk’s Dec. 14 Government Summit in Washington, D.C.
The Cybersecurity and Infrastructure Security Agency (CISA) has added two new Common Vulnerabilities and Exposures (CVEs) listings to its already extensive website catalog of CVEs, the agency said in a Twitter posting on Nov.28.
Since July 2021, the Hive ransomware group has victimized over 1,300 companies worldwide and received about $100 million in ransom payments, according to the Federal Bureau of Investigation (FBI).
The Cybersecurity and Infrastructure Security Agency (CISA) along with the National Security Agency (NSA) and the Office of the Director of National Intelligence (ODNI) published the final part of the three-part series on securing supply chains on Nov. 17.
The Cybersecurity and Infrastructure Security Agency (CISA) announced on Nov. 22 the release of a new update on the agency’s Infrastructure Resilience Planning Framework (IRPF) which helps state, local, tribal, and territorial planners protect technological infrastructure.
The Cybersecurity and Infrastructure Security Agency (CISA) has named Dr. Elizabeth Kolmstetter the agency’s first-ever Chief People Officer.
Iranian nation-state threat actors breached a Federal agency’s network before deploying malware, including a credential harvester and a cryptocurrency miner, according to a joint advisory released on Nov. 16, by the Federal Bureau of Investigations (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA).
A Cybersecurity and Infrastructure Security Agency (CISA) official told attendees at the Nov. 9 Red Hat Government Symposium that the agency’s efforts to improve security threat hunting within Federal government networks relies on speeding threat data to end users who can best use it.
The Cybersecurity and Infrastructure Security Agency (CISA) along with the Federal Bureau of Investigation (FBI) and the Department of Health and Human Services (HHS) released a new Cybersecurity Advisory (CSA) on Oct. 21 warning about ransomware attacks by the Daixin Team hacking group. The advisory says the Daixin Team has been targeting U.S. healthcare organizations […]
The Cybersecurity and Infrastructure Security Agency (CISA) on Oct. 20 released new security configuration baseline recommendations for Microsoft 365 cloud services.
The Cybersecurity and Infrastructure Security Agency (CISA) plans to host a public listening session in Washington, D.C. on Oct. 19 to get input on forthcoming proposed regulations to implement the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA).
The Cybersecurity and Infrastructure Security Agency (CISA) has selected Mona Harrington to be the assistant director for the agency’s National Risk Management Center (NRMC), a position she has been serving on a temporary basis since March.
The Cybersecurity and Infrastructure Security Agency (CISA) has opened their annual, voluntary cybersecurity assessment for state, local, tribal, and territorial (SLTT) entities across the nation and aims to provide a broad picture of the current cybersecurity gaps and capabilities.
The Senate Homeland Security and Governmental Affairs Committee on Sept. 28 voted to approve legislation that would authorize the Cybersecurity and Infrastructure Security Agency (CISA) to undertake and fund a new initiative to provide industrial control systems (ICS) security training.
The Federal government’s Joint Ransomware Task Force (JRTF) kicked off its inaugural meeting with a discussion of new initiatives to collaborate with state, local, tribal, and territorial entities to protect against ransomware intrusions and disrupt malicious actors, according to a September 14 press release from the Cybersecurity and Infrastructure Security Agency (CISA).
The Cybersecurity and Infrastructure Security Agency (CISA), along with its partners, released a Cybersecurity Advisory (CSA) on Sept. 14 to warn agencies about continued malicious cyber activity from actors affiliated with the Iranian Government’s Islamic Revolutionary Guard Corps (IRGC).
The Cybersecurity and Infrastructure Security Agency (CISA) has issued its strategic plan for 2023 to 2025, setting forth four main goals of cyber defense, risk reduction and resilience, operational collaboration, and agency unification.