Cybersecurity and Infrastructure Security Agency Archives

‘FRED’ Security FAIL — Ignored by US Rail for 20 YEARS

BCH vs. SDR, AAR vs. CISA: Railroad industry first warned about this nasty vulnerability in 2005 ...

Security Boulevard

Juhan Lepassaar, executive director of the European Union Agency for Cybersecurity (ENISA)

As US CVE Database Fumbles, EU ‘Replacement’ Goes Live

Diesen Kuß der ganzen Welt! European Union Vulnerability Database (EUVD) launches this week. And not a moment too soon ...

Security Boulevard

In traditional Chinese writing, the word for “crisis” combines the characters for “danger” and “opportunity”

MITRE Crisis: CVE Cash Ends TODAY — CISA says ‘No Lapse’

These are “interesting” times: U.S. government funding for the Common Vulnerabilities and Exposures program expires April 16 ...

Security Boulevard

A close up of a patient monitor screen with a heart beat

CISA/FDA Warn: Chinese Patient Monitors Have BAD Bugs

China crisis? Stop using this healthcare equipment, say Cybersecurity & Infrastructure Security Agency and Food & Drug Administration ...

Security Boulevard

What to Know About the CISA Software Bill of Materials Sharing Lifecycle Phases

Esther Shein | June 20, 2023 | Application Security, cisa, Cybersecurity and Infrastructure Security Agency, SBOM, software bill of materials, Uncategorized

As Software Bill of Materials (SBOM) adoption efforts mature, a report recently released by the Cybersecurity and Infrastructure Security Agency (CISA) provides guidance to users in selecting suitable SBOM sharing platforms based on ...

Rezilion

CISA Order Highlights Persistent Risk at Network Edge

BrianKrebs | June 15, 2023 | Adam Boileau, Barracuda Networks, cisa, CVE-2023-27997, Cybersecurity and Infrastructure Security Agency, Fortinet, Fortra, GoAnywhere, Latest Warnings, Mandiant, MOVEit Transfer, Patrick Gray, Progress Software, risky-business-podcast, The Coming Storm, Time to Patch

The U.S. government agency in charge of improving the nation's cybersecurity posture is ordering all federal civilian agencies to take new measures to restrict access to Internet-exposed networking equipment. The directive comes ...

Krebs on Security

Christopher Krebs- DevOps Connect - DevSecOps - RSAC - Cybersecurity - RSA Conference 2021 - Department of Homeland Security - DHS

Christopher Krebs to Keynote in Live Fireside Chat/Q&A Session at DevOps Connect: DevSecOps at RSA Conference 2021

Charlene O’Hanlon | April 26, 2021 | Christopher Krebs, cisa, Cybersecurity and Infrastructure Security Agency, Department of Homeland Security, DevOps Connect, DevOps Connect: DevSecOps, DevSecOps, RSA Conference 2021

Former Director of Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) to headline free one-day event Boca Raton, FL, April 26, 2021 — MediaOps, the place to tell your story in ...

Security Boulevard

SolarWinds Hack Could Affect 18K Customers

BrianKrebs | December 15, 2020 | Alan Paller, Andrew Morris, Center for Strategic and International Studies, cisa, Cybersecurity and Infrastructure Security Agency, Data breaches, fireeye, GreyNoise Intelligence, James Lewis, Microsoft, Orion software, SANS Institute, SolarWinds breach, U.S. Securities and Exchange Commission, Vinoth Kumar

The still-unfolding breach at network management software firm SolarWinds may have resulted in malicious code being pushed to nearly 18,000 customers, the company said in a legal filing on Monday. Meanwhile, Microsoft ...

Krebs on Security

U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise

BrianKrebs | December 14, 2020 | APT29, Cybersecurity and Infrastructure Security Agency, Data breaches, Department of Commerce, FireEye hack, Microsoft, Orion, Reuters, SolarWinds breach, The Coming Storm, U.S. Treasury Department

Communications at the U.S. Treasury and Commerce Departments were reportedly compromised by a supply chain attack on SolarWinds, a security vendor that helps the federal government and a range of Fortune 500 ...

Krebs on Security

Trump Fires Security Chief Christopher Krebs

BrianKrebs | November 18, 2020 | A Little Sunshine, Christopher Krebs, cisa, Cybersecurity and Infrastructure Security Agency, president trump, Rumor Control, Sen. Angus King, Sen. Richard Burr, U.S. Department of Homeland Security, Y2K

President Trump on Tuesday fired his top election security official Christopher Krebs (no relation). The dismissal came via Twitter two weeks to the day after Trump lost an election he baselessly claims ...

Krebs on Security

Cybersecurity and Infrastructure Security Agency

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On