Security news aggregator

Latest coverage for CISA

Stay informed on the latest CISA updates, guidelines, and alerts critical for robust information security and cyber threat prevention.

12 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Cybersecurity and Infrastructure Security Agency (CISA) is the U.S. Department of Homeland Security agency for reducing cyber and physical risks to critical infrastructure and federal civilian networks. Created by the 2018 CISA Act, it works with government and industry, publishes alerts and guidance, and coordinates assistance during significant incidents. Its direct federal-network role chiefly covers the Federal Civilian Executive Branch, including .gov; private-sector engagement is often voluntary or sector-specific.

Practitioners use CISA advisories and the Known Exploited Vulnerabilities catalog to prioritize patching where exploitation has been observed, and consult applicable directives and incident-response guidance. CISA supports vulnerability reporting and promotes controls such as multifactor authentication, logging, and tested recovery. A CISA alert is an actionable risk signal, not proof every organization is affected; teams should verify product, version, exposure, and obligations.

Showing 12 most recent headlines Filtered view
Bank Info Security 2 years, 2 months ago

Technology Giants Join CISA's Secure By Design Pledge

68 Tech Companies Join US Cyber Agency's Pledge to Build Security Into ProductsThe U.S. Cybersecurity and Infrastructure Security Agency has announced a new voluntary pledge featuring 68 inaugural members that have committed to take specific actions to improve the security of their products, shifting responsibilities from end users to the providers themselves.

Bank Info Security 2 years, 2 months ago

CISA Directors Talk Geopolitical Threats, Election Security

Explosion in Threat Actors, Poorly Configured Technology Compound the RiskGeopolitical events increasingly pose risks to organizations' cybersecurity posture, the current and former leaders of the U.S. Cybersecurity and Infrastructure Security Agency - Jen Easterly and Chris Krebs - warned at this year's RSA Conference in San Francisco.

In the first year alone, that's saved us all a lot of money and woe RSAC As ransomware gangs step up their attacks against healthcare, schools, and other US critical infrastructure, CISA is ramping up a program to help these organizations fix flaws exploited by extortionists in the first place.…