Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

18 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 18 most recent headlines Filtered view

Critical Infrastructure Operators Urged to Fortify Against Nation-State AttacksThe Cybersecurity and Infrastructure Security Agency launched CI Fortify, urging critical infrastructure operators to adopt isolation and rapid recovery capabilities to maintain essential services under cyberattacks, amid warnings that nation-state actors are already embedded in operational systems.

Prioritize resilience over productivity, say CISA, NCSC and their friends from Oz, NZ, Canada Information security agencies from the nations of the Five Eyes security alliance have co-authored guidance on the use of agentic AI that warns the technology will likely misbehave and amplifies organizations’ existing frailties, and therefore recommend slow and careful adoption of the tech.…

FBI, CISA harrumph at Microsoft and VMware in call for coders to quit baking avoidable defects into stuff US authorities have labelled buffer overflow vulnerabilities "unforgivable defects”, pointed to the presence of the holes in products from the likes of Microsoft and VMware, and urged all software developers to adopt secure-by-design practices to avoid creating more of them.…

Bank Info Security 1 year, 6 months ago

US CISA Issues Final Cyber Rules for Restricted Bulk Data

Cyber Defense Agency Aims to Bolster Protections Against Chinese IntrusionThe Cybersecurity and Infrastructure Security Agency is issuing final rules to safeguard U.S. sensitive data from potential Chinese intrusions, requiring Americans involved in restricted transactions with Chinese entities to adopt stringent cybersecurity measures.

Bank Info Security 1 year, 6 months ago

CISA: 2035 Quantum Encryption Deadline Still Achievable

CISA Says 2035 Quantum Deadline Remains Achievable Despite Recent BreakthroughsThe federal government’s 2035 mandate to adopt quantum-resistant encryption remains feasible despite technological advancements in quantum computing, a top official for the U.S. cyber defense agency told ISMG, but experts warn challenges such as bureaucratic delays and financial costs persist.

Bank Info Security 1 year, 6 months ago

US CISA Endorses Encrypted Apps Amid Chinese Telecom Hack

CISA Recommends Strict Mobile Security Measures Following Salt Typhoon Telecom HackThe Cybersecurity and Infrastructure Security Agency's latest guidance calls on top U.S. political and government officials to adopt stricter mobile security measures in response to the Salt Typhoon hacking campaign, a Chinese espionage effort that has infiltrated major telecom systems.

Federal Agencies Tasked with Adopting New Cloud Security Policies Beginning in 2025The Cybersecurity and Infrastructure Security Agency is requiring federal agencies to adopt secure cloud configurations, integrate monitoring tools and report cloud systems starting in 2025 as part of an effort to address vulnerabilities in part exposed by the SolarWinds attack.

Bank Info Security 2 years, 3 months ago

New Tool Aims to Simplify and Streamline SBOM Adoption

OpenSSF Partners With DHS and CISA to Launch Global Software Supply Chain ProjectOpenSSF launched a new tool Tuesday in partnership with the Department of Homeland Security and the Cybersecurity and Infrastructure Security Agency to help simplify for federal agencies and private organizations the process of reading and generating software bills of materials.

Bank Info Security 2 years, 8 months ago

New CISA AI Road Map Charts Course for Responsible Adoption

Agency Aims to Take a Leadership Role in Government Adoption of Responsible AIThe U.S. Cybersecurity and Infrastructure Security Agency has released a road map for artificial intelligence after an October executive order tasked the Department of Homeland Security with assisting federal agencies and the private sector in the safe development and deployment of new AI systems.

Calls for wider adoption of security-by-design principles continue to ring loudly from Uncle Sam The US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) are blaming unchanged default credentials as the prime security misconfiguration that leads to cyberattacks.…