Cybersecurity and Infrastructure Security Agency

CISA Publishes JCDC Remote Monitoring and Management Systems Cyber Defense Plan

Homeland Security Today - August 18, 2023

By targeting RMM products, threat actors attempt to evade detection and maintain persistent access, a technique known as living off the land.

Infrastructure Security

CISA Releases Infrastructure Resilience Planning Framework Launchpoint

Homeland Security Today - August 18, 2023

The self-appraisal tool helps users contemplate their community’s resilience goals and start developing an approach to incorporating critical infrastructure resilience into their planning activities.

DHS

CISA and Election Security Partners Hold Election Security Exercise

Homeland Security Today - August 18, 2023

The annual exercise gives participants the opportunity to share practices around cyber and physical incident planning, preparedness, identification, response, and recovery.

Cybersecurity and Infrastructure Security Agency

Aeva Black Joins CISA as Open Source Security Lead

Homeland Security Today - August 11, 2023

Black comes to the agency as CISA is launching a new initiative to engage with open- source community organizations to strengthen the overall security posture of open-source software.

Cybersecurity

Agencies Seek Input to Help Secure Open Source Software

Homeland Security Today - August 11, 2023

The RFI seeks input on where the government should focus areas for prioritization to secure open source software.

Cybersecurity

New CISA Cybersecurity Strategic Plan Focuses on Fundamentals to Change the ‘Trajectory of National Cybersecurity Risk’

Bridget Johnson - August 9, 2023

Objectives in the new agency roadmap are built around assessing immediate threats, hardening the attack surface, and driving development of trustworthy tech products.

Cybersecurity

Agencies Release the Top Routinely Exploited Cyber Vulnerabilities of 2022

Homeland Security Today - August 3, 2023

This advisory provides details on the Common Vulnerabilities and Exposures (CVEs) routinely and frequently exploited by malicious cyber actors in 2022 and the associated Common Weakness Enumeration(s).

Cybersecurity

CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities

Homeland Security Today - August 3, 2023

CISA and NCSC-NO are concerned about the potential for widespread exploitation of both vulnerabilities in government and private sector networks.

Leidos to Provide New Baggage Screening Systems to Sofia Airport

Booz Allen Invests in HiddenLayer to Expand Adversarial AI Capabilities

OIG Says CBP, ICE, and Secret Service Did Not Adhere to Privacy Policies or Develop Sufficient Policies Before Procuring and Using Commercial Telemetry Data

OIG Announces Results of Unannounced Inspections of CBP Holding Facilities in the Laredo Area

OIG Says CBP, ICE, and Secret Service Did Not Adhere to Privacy Policies or Develop Sufficient Policies Before Procuring and Using Commercial Telemetry Data

OIG Announces Results of Unannounced Inspections of CBP Holding Facilities in the Laredo Area

CBP Anticipates Releasing Enterprise Business Management Support Services RFQ in First Quarter of FY2024

DHS, DoD to Host CWMD Alliance Industry Day

TRENDING

CISA and UK NCSC Hold Inaugural Meeting of Strategic Dialogue on Cybersecurity of Civil Society Under Threat of Transnational Repression

CISA and FEMA Open the Application Process for the Tribal Cybersecurity Grant Program

CISA Launches National Public Service Announcement Campaign Encouraging Americans to Take Steps to Keep Themselves and Their Families Safe Online

CISA Releases Hardware Bill of Materials Framework (HBOM) for Supply Chain Risk Management (SCRM)