CISA Issues Emergency Directive Requiring Federal Agencies to Check Pulse Connect Secure Products
The directive is in response to observed active exploitation using disclosed vulnerabilities in Pulse Connect Secure products. Keep Reading
CISA Hosts Meeting to Focus on Securing Nation’s Industrial Control Systems
The ICSJWG, one of the principle components of the Strategy for Securing Control Systems, coordinates the facilitation of stakeholder efforts and shares information to help manage cybersecurity risk. Keep Reading
CISA Receives 2021 Public Integrity Award from American Society for Public Administration
The Cybersecurity and Infrastructure Security Agency (CISA) has been selected as a recipient of the American Society for Public Administration’s 2021 Public Integrity Award. Keep Reading
CISA, Indianapolis Motor Speedway and Local Partners Conduct Joint Exercise to Keep Indianapolis 500 Fans Safe
Representatives from multiple government agencies and the community discussed their roles, shared best practices, and improved coordination mechanisms to help keep the public safe. Keep Reading
Biden Unveils Picks to Lead CBP and USCIS, Along with a No. 2 for DHS
Police Chief Chris Magnus of Tucson, Ariz., was selected to lead Customs and Border Protection while Ur Jaddou, the former director of DHS Watch, was selected for USCIS and John Tien was nominated for deputy DHS secretary. Keep Reading
Biden Beefs Up Cyber Team with NSA, DHS Veterans in Key Roles at White House, CISA, DHS
Former NSA Deputy Director Chris Inglis picked to be the first national cyber director, former NSA deputy for counterterrorism Jen Easterly picked to lead CISA, and Rob Silvers, former assistant secretary for cyber policy at DHS, chosen as DHS undersecretary for policy. Keep Reading
Flat DHS Budget in Biden Request Includes Increases for Cyber Threats, Domestic Terror
Immigration increases include USCIS funding and Office of Professional Responsibility to process CBP, ICE complaints. Keep Reading
CISA Releases Supplemental Direction on Emergency Directive for Microsoft Exchange Server Vulnerabilities
CISA has issued supplemental direction to Emergency Directive (ED) 21-02: Mitigate Microsoft Exchange On-Premises Product Vulnerabilities providing additional forensic triage and server hardening, requirements for federal agencies. Keep Reading
FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities
APT actors may use these vulnerabilities or other common exploitation techniques to gain initial access to multiple government, commercial, and technology services. Gaining initial access pre-positions the APT actors to conduct future attacks. Keep Reading
National Supply Chain Integrity Month
CISA and Partners Promote Call to Action During National Supply Chain Integrity Month
Information and communications technology (ICT) systems underpin a broad range of critical infrastructure activities that support critical functions within our communities, such as generating electricity, operating hospitals, and supplying clean water. Keep Reading
Mayorkas Lays Out Cybersecurity Plan for DHS: Industry Partners, CISA Strength, ‘Sprints’
The first sprint will focus on fight against ransomware, which DHS secretary said "now poses a national security threat." Keep Reading
CISA Issues CFATS Information Collection Request
On March 23, CISA published a 60-day notice in the Federal Register (86 FR 15490) soliciting public comment on revisions to Information Collection Request (ICR) 1670-0014 that supports several efforts under the CFATS program. Keep Reading
CISA, NASCAR, Talladega Superspeedway and Local Partners Conduct Joint Exercise to Keep GEICO 500 Fans Safe
The exercise is part of an ongoing partnership between those involved and was not in response to any specific threat. Keep Reading
Election Security
To Help Protect Our Elections, NIST Offers Specific Cybersecurity Guidelines
Making elections secure means protecting against ever-evolving threats to information technology — which scans in-person and mail-in ballots, supports voter registration databases and communicates vote tallies. Keep Reading
Webshells Observed in Post-Compromised Exchange Servers
CISA has added two new Malware Analysis Reports (MARs) to Alert AA21-062A: Mitigate Microsoft Exchange Server Vulnerabilities. Keep Reading
CISA Leader: Agency Must Expand Visibility into Risks, Incident Response Capacity After SolarWinds
Wales called cybersecurity investments in the American Rescue Act, including an extra $650 million for CISA, "an important down payment on the cybersecurity capabilities," but "we are not stopping there." Keep Reading
TTP Table for Detecting APT Activity Related to SolarWinds and Active Directory/M365 Compromise
The table uses the MITRE ATT&CK framework to identify APT TTPs and includes detection recommendations. This information will assist network defenders in detecting and responding to this activity. Keep Reading
Profiles in Excellence: Interview with Brian Keith, Protective Security Advisor at CISA
The first part of our Profiles in Excellence series. Stay tuned over the next month as we highlight all of our 2020 Award Winners! Keep Reading
GAO: CISA’s Transformation Delays May Impair America’s Cyber Response
A Government Accountability Office (GAO) report says the Cybersecurity and Infrastructure Security Agency (CISA) isn't fully up and running yet. As a result, the watchdog says it may be difficult for CISA to identify and respond to cybersecurity incidents. Keep Reading
F5 Security Advisory for RCE Vulnerabilities in BIG-IP, BIG-IQ
CISA encourages users and administrators review the F5 advisory and install updated software as soon as possible. Keep Reading