The Cybersecurity and Infrastructure Security Agency has issued an advisory concerning the exploitation of a vulnerability within select versions of the Adobe ColdFusion web application development platform that resulted in the compromise
More
The Government Accountability Office found that 20 federal agencies failed to meet the standards for cybersecurity incident response preparedness due to staff shortage, IT challenges and limitations in information sharing. A GAO
More
The Department of Defense’s Office of Inspector General released a special report that includes 24 open recommendations to address cybersecurity weaknesses in controlled unclassified information, or CUI, management by the agency’s contractors.
More
The Office of Management and Budget issued guidelines to help federal agencies comply with the Federal Information Security Modernization Act, also known as FISMA, for fiscal year 2024. The guidance includes requirements
More
The Cybersecurity and Infrastructure Security Agency issued an alert on Dec. 1 warning the public about malicious actors currently exploiting Israeli-made programmable logic controllers used in a variety of industries, including the
More
Sandy Radesky, associate director for vulnerability management at the Cybersecurity and Infrastructure Security Agency, said the agency plans to launch the ReadySetCyber tool in early 2024 to provide tailored technical assistance and
More
The Cybersecurity and Infrastructure Security Agency has released the first publication in its Secure by Design Alerts series to raise awareness of malicious cyber activity against web management interfaces. CISA said Wednesday
More
Rick Therrien, director of cybersecurity operations at the Internal Revenue Service, said the IRS has made progress in collecting audit logs and has begun automating its cybersecurity response playbooks by merging log
More
The Defense Advanced Research Projects Agency has started soliciting information on potential vendors that could provide classified cyberspace operations and information operations, or COIO, research and development support services. The DARPA Information
More
The Cybersecurity and Infrastructure Security Agency is bringing back the Cybersecurity Insurance and Data Analysis Working Group, also known as CIDAWG, to guide organizations in IT defense investments, CISA Deputy Director Nitin
More