The Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to take immediate action to patch vulnerabilities in the Cisco Adaptive Security Appliances (ASA) platform by Friday, Sept. 26, at 11:59 p.m. […]

Steve Casapulla has been tapped to serve as the assistant director for infrastructure security at the Cybersecurity and Infrastructure Security Agency (CISA), the agency announced on Tuesday.   […]

Sandy Radesky, associate director for vulnerability management at the Cybersecurity and Infrastructure Security Agency (CISA), announced her departure from the agency this week after nearly three years of service. […]

The Cybersecurity and Infrastructure Security Agency (CISA) plans to seek funding and input from international governments to support its Common Vulnerabilities and Exposures (CVE) Program, a senior official said Wednesday.  […]

A Cybersecurity Infrastructure and Security Agency (CISA) program designed to pay incentives to retain highly skilled cybersecurity professionals has spent over $138 million over the last four years – most of which hasn’t gone to the right people.  […]

As cyber threats intensify, the Cybersecurity and Infrastructure Security Agency (CISA) is pushing to modernize its defenses by overhauling compliance tools and rethinking its authority to operate (ATO) efforts, CISA Chief Information Officer (CIO) Robert (Bob) Costello said on Tuesday. […]

After narrowly avoiding a lapse in its funding earlier this year, the Common Vulnerabilities and Exposures (CVE) Program is getting an update, the Cybersecurity and Infrastructure Security Agency (CISA) announced on Wednesday.  […]

The Office of Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) will be bringing together all of the federal chief information security officers (CISOs) within the next month for a tabletop exercise focused on operational resilience. […]

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and 19 international partners released a joint guide on Sept. 3 that aims to inform the global cyber community on the value of implementing a software bill of materials (SBOM). […]

While artificial intelligence is becoming indispensable to proactive cyber defense strategies, federal cyber leaders warned on Sept. 4 that agencies must pair AI-driven detection with strong response planning and resilience measures to withstand inevitable cyberattacks.   […]

The Cybersecurity and Infrastructure Security Agency (CISA) has appointed Nicholas Andersen as its new executive assistant director for cybersecurity, tasking him with leading efforts to combat major cyber threats and strengthen the resilience of the nation’s critical infrastructure. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on Aug. 26 rolled out a new web-based tool that the agency said can help IT industry decision makers, procurement officials, and software suppliers “strengthen cybersecurity practices throughout the software procurement lifecycle.” […]

The Cybersecurity and Infrastructure Security Agency (CISA) is sharing details on what vendors can expect from its list of product categories that support post-quantum cryptography (PQC), which a CISA official said this week that the agency is on track to deliver in December. […]

Chinese state-sponsored hackers are waging a global cyber campaign against critical infrastructure, U.S. and international authorities warned today. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has sworn in Brian Bonacci as the agency’s chief of staff. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today released a draft of the first federal update to software bill of materials (SBOM) guidance since 2021, covering a new range of use cases, generation processes, and improvements to data quality.  […]

The Cybersecurity Infrastructure and Security Agency (CISA) and Sandia National Laboratories are warning that public and private sector collaborators must work to close the “software understanding” gap to better secure the nation’s systems and infrastructure.  […]

The Cybersecurity and Infrastructure Security Agency’s (CISA) new guidance, released on Aug. 13 for critical infrastructure owners and operators to improve the security of their operational technology (OT), focuses on creating and maintaining comprehensive OT asset inventories and taxonomies. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today ordered Federal government agencies to take mitigation steps to deal with a Microsoft Exchange Vulnerability that the agency warned about on Wednesday night, and to finish that work by 9 a.m. Eastern time on Monday, Aug. 11. […]

The Department of Homeland Security (DHS) said on August 1 that it is offering $103.8 million of grant funding to state, local, and tribal governments to “strengthen community cybersecurity.” […]

The Cybersecurity and Infrastructure Security Agency (CISA) released an Eviction Strategies Tool on July 30 to help cyber defenders better respond to cyber incidents. […]

The Senate Homeland Security and Governmental Affairs Committee voted today to approve the nomination of Sean Plankey to become the director of the Cybersecurity and Infrastructure Security Agency (CISA). […]

Two former Cybersecurity and Infrastructure Security Agency (CISA) officials are looking to continue their efforts on Secure by Design outside of the agency with new gigs at the Institute for Security and Technology (IST). […]

Allan Friedman, who has led the Cybersecurity and Infrastructure Security Agency’s (CISA) efforts to promote the use of software bills of material (SBOM) globally as a key component of advancing cybersecurity, is leaving the agency on July 31. […]

Sean Plankey, who is President Donald Trump’s nominee to run the Cybersecurity and Infrastructure Security Agency (CISA), pledged at his Senate nomination hearing today to focus on the agency’s primary security missions and to push for more resources from the Department of Homeland Security (DHS) and Congress if those are required. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on July 20 flagged a new warning from Microsoft on exploitation of a SharePoint vulnerability (CVE-2025-53770). […]

In its fourth attempt to get answers, Democratic lawmakers are once again pressing officials at the Cybersecurity and Infrastructure Security Agency (CISA) for explanations on how the agency is supporting state and local election offices ahead of the 2026 midterm election cycle. […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) component has appointed Casie Antalis to serve as the program director of its Joint Cyber Coordination Group, an agency spokesperson told MeriTalk. […]

The Cybersecurity and Infrastructure Security Agency (CISA) issued a warning today about possible cyberattacks on vulnerable U.S. networks and critical infrastructure coming from Iranian state actors following the June 21 bombings of Iranian nuclear facilities by the United States. […]

House Republicans pushed the Department of Homeland Security (DHS)’s fiscal year 2026 budget plan out of committee on June 24 with higher levels of funding for the agency’s cybersecurity efforts than under the budget cut proposed by President Donald Trump.   […]