CISA – Page 3 – MeriTalk

Mar 27, 2024 | 3:34 pm

CISA Wants Input on CIRCIA Cyber Incident Reporting Rule

Mar 27, 2024 | 3:34 pm

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) published its long-awaited cyber incident reporting rule today for the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA), requesting public input on the forthcoming regulations. […]

Civilian Agencies

Homeland Security

CISA

Mar 19, 2024 | 2:51 pm

CISA Official Details New Fed Operational Cyber Alignment Plan

Mar 19, 2024 | 2:51 pm

In response to the evolving threat environment, the Cybersecurity and Infrastructure Security Agency (CISA) is looking to better coordinate cybersecurity operations across the Federal government through a newly released Federal Operational Cyber Alignment Plan, or FOCAL. […]

Civilian Agencies

Homeland Security

CISA

Mar 19, 2024 | 9:17 am

CISA Publishes Repository for Software Attestation, Artifacts

Mar 19, 2024 | 9:17 am

The Cybersecurity and Infrastructure Security Agency (CISA) announced on March 18 the availability of the Repository for Software Attestation and Artifacts that software developers can use to share software attestation forms and relevant artifacts. […]

Civilian Agencies

Homeland Security

CISA

Mar 14, 2024 | 2:54 pm

CISA Releases New SCuBA Hybrid Identity Guidance

Mar 14, 2024 | 2:54 pm

The Cybersecurity and Infrastructure Security Agency (CISA) has released new guidance to help deal with identity management capabilities when transitioning from on-premises enterprise networks to cloud-based solutions. […]

Civilian Agencies

Homeland Security

CISA

Mar 12, 2024 | 3:30 pm

White House Approves Secure Software Attestation Form

Mar 12, 2024 | 3:30 pm

The Biden-Harris administration approved a secure software development attestation form on Monday, taking a crucial step towards ensuring Federal contractors provide secure products to the Federal government. […]

Civilian Agencies

Homeland Security

CISA

Mar 11, 2024 | 9:42 am

NSTAC: Grants, Tax Breaks Can Spur Better Cybersecurity Steps

Mar 11, 2024 | 9:42 am

The Federal government should provide economic incentives such as tax deductions or Federal grants to critical infrastructure providers and other organizations that adopt cybersecurity best practices, the National Security Telecommunications Advisory Committee (NSTAC) said in a March 7 report. […]

Civilian Agencies

Homeland Security

CISA

Mar 7, 2024 | 3:06 pm

CISA Addressing OSS Vulnerabilities With New Initiatives

Mar 7, 2024 | 3:06 pm

The Cybersecurity and Infrastructure Security Agency (CISA) has announced three initial key actions to help secure the open source ecosystem upon the conclusion of its two-day Open Source Software (OSS) Security Summit this week. […]

Civilian Agencies

Homeland Security

CISA

Mar 7, 2024 | 2:03 pm

CISA CIO Previews Agency’s IT Migration to ‘Greenfield’ Solution

Mar 7, 2024 | 2:03 pm

The Cybersecurity and Infrastructure Security Agency (CISA) is undergoing a large-scale modernization process with plans to migrate the majority of its legacy IT systems to a brand-new “greenfield solution” later this year, according to CISA Chief Information Officer (CIO) Robert (Bob) Costello. […]

Civilian Agencies

Homeland Security

CISA

Feb 29, 2024 | 3:05 pm

CISA Renews Warning on Ongoing Exploitation of Ivanti Vulnerabilities

Feb 29, 2024 | 3:05 pm

The Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI and international partners, released a cybersecurity advisory (CSA) today to warn about the ongoing exploitation of multiple vulnerabilities within the Ivanti Connect Secure and Ivanti Policy Secure gateways. […]

Civilian Agencies

Homeland Security

CISA

Feb 29, 2024 | 3:03 pm

Feds Suggest AI, Quantum Tech Help for Zero Trust Goals

Feb 29, 2024 | 3:03 pm

Government agencies and private sector firms need to boost their cybersecurity capabilities to keep pace with increasing threats and should turn to AI and quantum computing for help in pursuing that goal, Federal cybersecurity experts said today at the Visualyze Zero Trust Security Summit hosted by MeriTalk and Gigamon in Washington, D.C […]

Civilian Agencies

Homeland Security

CISA

Feb 26, 2024 | 2:50 pm

CISA Warns of Russian Hacker Tactics Against Cloud Systems

Feb 26, 2024 | 2:50 pm

The Cybersecurity and Infrastructure Security Agency (CISA) – along with the UK National Cyber Security Centre (NCSC) and other international partners – has released a joint advisory warning of tactics and techniques used by alleged Russian Foreign Intelligence Service (SVR) hackers to infiltrate cloud systems. […]

Civilian Agencies

Homeland Security

CISA

Feb 16, 2024 | 3:14 pm

CISA Extends Communications Tech SCRM for Two-Year Term

Feb 16, 2024 | 3:14 pm

The Cybersecurity and Infrastructure Security Agency (CISA) has given its Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force another two-year term to continue its work on creating solutions for managing global ICT supply chain risk. […]

Civilian Agencies

Homeland Security

CISA

Feb 15, 2024 | 2:13 pm

CISA Consolidating Zero Trust Functions in Single Office

Feb 15, 2024 | 2:13 pm

The Cybersecurity and Infrastructure Security Agency (CISA) is moving to consolidate disparate zero trust security policy functions into a new single office at the agency. […]

Civilian Agencies

Homeland Security

CISA

Feb 12, 2024 | 3:39 pm

CISA 2024 JCDC Priorities Feature APTs, AI, Infrastructure Threats

Feb 12, 2024 | 3:39 pm

The Cybersecurity and Infrastructure Security Agency (CISA) issued 2024 Priorities today for its Joint Cyber Defense Collaborative (JCDC) – aligning its priorities for the first time under three focus areas to help establish resources required and strategic direction. […]

Civilian Agencies

Homeland Security

CISA

Jan 24, 2024 | 12:19 pm

CISA Warns of Malicious GenAI Use in 2024 Elections

Jan 24, 2024 | 12:19 pm

As polls across the United States begin to open for the 2024 election cycle, the Cybersecurity and Infrastructure Security Agency (CISA) is warning election officials of the role generative AI could play in threatening election infrastructure. […]

Civilian Agencies

Homeland Security

CISA

Jan 16, 2024 | 2:32 pm

CISA Offers Nine new ICS Cybersecurity Advisories

Jan 16, 2024 | 2:32 pm

The Cybersecurity and Infrastructure Security Agency (CISA) has released nine new Industrial Control Systems (ICS) advisories that the agency says will “provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.” […]

Civilian Agencies

Homeland Security

CISA

Jan 12, 2024 | 1:39 pm

CISA Seeking Contestants for President’s Cup Cyber Competition

Jan 12, 2024 | 1:39 pm

The Cybersecurity and Infrastructure Security Agency (CISA) is looking to test the technical capabilities of teams and individuals in its fifth annual 2024 President’s Cup Cyber Competition, where teams will be pitted against each other in a competition to recognize and reward some of the very best in the cybersecurity world.’ […]

Civilian Agencies

Homeland Security

CISA

Jan 3, 2024 | 10:41 am

DHS Looks for Input on Cloud/Machine Learning Project

Jan 3, 2024 | 10:41 am

The Department of Homeland Security (DHS) is looking for information that will support the agency’s Advanced Analytics Platform For Machine Learning (CAP-M) Project – a program under development at the Cybersecurity Infrastructure Security Agency (CISA) – to support new software and tools in a multi-tenant cloud environment. […]

Civilian Agencies

Homeland Security

CISA

Dec 20, 2023 | 2:54 pm

CISA Finds Security Holes in Healthcare Pen Testing Exercise

Dec 20, 2023 | 2:54 pm

The Cybersecurity and Infrastructure Security Agency (CISA) on Dec. 15 released the results of a January 2023 Risk and Vulnerability Assessment (RVA) performed on an unidentified organization in the Healthcare and Public Health (HPH) sector that found exploitable misconfigurations and the use of weak passwords, among other cybersecurity weaknesses. […]

Civilian Agencies

Homeland Security

CISA

Dec 20, 2023 | 2:13 pm

CISA Wants Feedback on Secure-by-Design Guidelines

Dec 20, 2023 | 2:13 pm

The Cybersecurity and Infrastructure Security Agency (CISA) issued a formal request for information (RFI) in the Federal Register today looking for feedback on its secure-by-design software practices. […]

Civilian Agencies

Homeland Security

CISA

Dec 18, 2023 | 3:46 pm

CISA Tells Manufacturers to Eliminate Default Passwords

Dec 18, 2023 | 3:46 pm

The Cybersecurity and Infrastructure Security Agency (CISA) is pushing equipment and software manufacturers to eliminate the use of default passwords in their products. […]

Civilian Agencies

Homeland Security

CISA

Dec 18, 2023 | 3:36 pm

NSA, CISA Release Open Source, SBOM Security Guidance

Dec 18, 2023 | 3:36 pm

The National Security Agency (NSA), the Office of the Director of National Intelligence (ODNI), and the Cybersecurity and Infrastructure Security Agency (CISA) have released a new report providing guidance on industry best practices on open source software and software bills of materials (SBOM). […]

Civilian Agencies

Homeland Security

CISA

Dec 14, 2023 | 2:54 pm

CISA: Collaboration is the ‘Fuel’ of Cyber Operations

Dec 14, 2023 | 2:54 pm

As cyber threats continue to evolve in complexity, collaboration is more crucial than ever and serves as the “fuel” of cyber operations, according to David Carroll, associate director for mission engineering at the Cybersecurity and Infrastructure Security Agency (CISA). […]

Civilian Agencies

Homeland Security

CISA

Dec 13, 2023 | 9:06 am

House Panel Tells CISA ‘Don’t Reinvent the Wheel’ on AI Security

Dec 13, 2023 | 9:06 am

Lawmakers and industry leaders on Tuesday highlighted ways the Cybersecurity and Infrastructure Security Agency (CISA) should seek to secure artificial intelligence (AI) technologies, starting with integrating the emerging technology into the agency’s existing cyber policies and guidelines. […]

Civilian Agencies

Homeland Security

CISA

Dec 11, 2023 | 12:25 pm

Cloud Computing Brainstorm 2019 - Sean Connelly

MeriTalk Q&A: CISA’s Sean Connelly at the Nexus of Cyber Defense

Dec 11, 2023 | 12:25 pm

The Federal government has come a long way in improving civilian agency and critical infrastructure cybersecurity over the past ten years. Central to that improvement effort is the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), which has the weighty mission of managing and reducing risk to U.S. cyber and physical infrastructure. […]

Civilian Agencies

Homeland Security

CISA

Dec 6, 2023 | 3:34 pm

CISA Advisory Panel Okays MSSL, Collaboration Recs

Dec 6, 2023 | 3:34 pm

The Cybersecurity and Infrastructure Security Agency’s (CISA) Cybersecurity Advisory Committee (CSAC) voted on Dec. 5 to approve two recommendations for the agency to consider on advancing memory safe system languages (MSSL), and on further strengthening operational collaboration. […]

Civilian Agencies

Homeland Security

CISA

Nov 21, 2023 | 3:47 pm

CISA, FBI Warn on LockBit Critical Infrastructure Assaults

Nov 21, 2023 | 3:47 pm

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI cautioned today that the LockBit ransomware gang is exploiting the Citrix Bleed security flaw in exploits against critical infrastructure sectors, according to a joint cybersecurity advisory (CSA) issued with the Multi-State Information Sharing and Analysis Center and the Australian Cyber Security Center. […]

Civilian Agencies

Homeland Security

CISA

Nov 15, 2023 | 2:19 pm

AI EO is ‘A Tremendous Accelerator’ for Federal Agencies: Top CISA Official

Nov 15, 2023 | 2:19 pm

The Biden administration’s recent artificial intelligence (AI) executive order (EO) is rapidly accelerating AI use and employee training among Federal agencies, a top Cybersecurity and Infrastructure Security Agency (CISA) official said on Nov. 15. […]

Civilian Agencies

Homeland Security

CISA

Nov 15, 2023 | 1:49 pm

Red Hat: Zero Trust Progress Must Match AI Advances

Nov 15, 2023 | 1:49 pm

Federal government agencies will need to “greatly accelerate” their efforts to implement key zero trust security measures in order to keep up with potential cybersecurity threats resulting from the ongoing development of artificial intelligence (AI) technologies, said a Cybersecurity and Infrastructure Security Agency (CISA) official who addressed the Red Hat Government Symposium 2023 event in Washington, D.C. today. […]

CIO Briefing Room

CDM

Nov 6, 2023 | 2:00 pm

CDM Program Manager Talks Goals for FY2024

Nov 6, 2023 | 2:00 pm

With the Continuous Diagnostics and Mitigation (CDM) Program – one of the Cybersecurity and Infrastructure Security Agency’s (CISA) top security efforts for Federal agencies – hitting its 11-year anniversary, Program Manager Matt House last week discussed some of the program’s major priorities for fiscal year 2024. […]

Cookie	Duration	Description
AWSALBCORS	7 days	Amazon Web Services set this cookie for load balancing.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Advertisement" category.
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
JSESSIONID	session	New Relic uses this cookie to store a session identifier so that New Relic can monitor session counts for an application.
PHPSESSID	session	This cookie is native to PHP applications. The cookie stores and identifies a user's unique session ID to manage user sessions on the website. The cookie is a session cookie and will be deleted when all the browser windows are closed.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
_pxhd	1 year	PerimeterX sets this cookie for server-side bot detection, which helps identify malicious bots on the site.

Cookie	Duration	Description
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
li_gc	5 months 27 days	Linkedin set this cookie for storing visitor's consent regarding using cookies for non-essential purposes.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.
__cf_bm	30 minutes	Cloudflare set the cookie to support Cloudflare Bot Management.

Cookie	Duration	Description
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.
_gat	1 minute	Google Universal Analytics sets this cookie to restrain request rate and thus limit data collection on high-traffic sites.

Cookie	Duration	Description
AnalyticsSyncHistory	1 month	Linkedin set this cookie to store information about the time a sync took place with the lms_analytics cookie.
CONSENT	2 years	YouTube sets this cookie via embedded YouTube videos and registers anonymous statistical data.
ln_or	1 day	Linkedin sets this cookie to registers statistical data on users' behaviour on the website for internal analytics.
pardot	past	The pardot cookie is set while the visitor is logged in as a Pardot user. The cookie indicates an active session and is not used for tracking.
UID	1 year 1 month 4 days	Scorecard Research sets this cookie for browser behaviour research.
vuid	1 year 1 month 4 days	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos on the website.
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gcl_au	3 months	Google Tag Manager sets the cookie to experiment advertisement efficiency of websites using their services.
_gid	1 day	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website's performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.
__gads	1 year 24 days	Google sets this cookie under the DoubleClick domain, tracks the number of times users see an advert, measures the campaign's success, and calculates its revenue. This cookie can only be read from the domain they are currently on and will not track any data while they are browsing other sites.

Cookie	Duration	Description
anj	3 months	AppNexus sets the anj cookie that contains data stating whether a cookie ID is synced with partners.
bcookie	1 year	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser IDs.
bscookie	1 year	LinkedIn sets this cookie to store performed actions on the website.
GoogleAdServingTest	session	Google sets this cookie to determine what ads have been shown to the website visitor.
IDE	1 year 24 days	Google DoubleClick IDE cookies store information about how the user uses the website to present them with relevant ads according to the user profile.
li_sugr	3 months	LinkedIn sets this cookie to collect user behaviour data to optimise the website and make advertisements on the website more relevant.
muc_ads	1 year 1 month 4 days	Twitter sets this cookie to collect user behaviour and interaction data to optimize the website.
personalization_id	1 year 1 month 4 days	Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
test_cookie	15 minutes	doubleclick.net sets this cookie to determine if the user's browser supports cookies.
uuid2	3 months	The uuid2 cookie is set by AppNexus and records information that helps differentiate between devices and browsers. This information is used to pick out ads delivered by the platform and assess the ad performance and its attribute payment.
VISITOR_INFO1_LIVE	5 months 27 days	YouTube sets this cookie to measure bandwidth, determining whether the user gets the new or old player interface.
YSC	session	Youtube sets this cookie to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt-remote-device-id	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt.innertube::nextId	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
_mkto_trk	1 year 1 month 4 days	This cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.
__gpi	1 year 24 days	Google Ads Service uses this cookie to collect information about from multiple websites for retargeting ads.