CISA sounds alarm on deep-seated vulnerability in Linux tool

The malicious code was introduced by a user that has long-contributed to the open-source ecosystem.

CISA's proposed framework for cyber incident reporting rules includes subpoena power

The rules also require that covered entities that pay ransomware hackers to regain control of their systems and data must report such payments to CISA.

Congress expected to approve government spending bill that cuts CISA funding

The agency has previously stressed that funding will be needed to combat cyber threats and coordinate with partners as the November presidential election approaches.

CISA rolls out secure software attestation form

A repository for software attestation submissions will be available later in March.

CISA targeted through Ivanti VPN vulnerabilities, reports say

The DHS agency has been issuing warnings about Ivanti products since at least 2020.

CISA is coordinating with election security partners for Super Tuesday voting 

The principal agency responsible for election security is asking public and private sector election administrators to share potential threat information as voters go to the polls.

Russian information operations to likely increase in 2024 amid global election activity, CrowdStrike says

The findings should come as no surprise with the advent of generative AI tools, ongoing geopolitical conflicts and a busy year for elections in the U.S. and Europe.

Biden to sign executive order boosting cybersecurity of ports, maritime vessels

The order empowers the Coast Guard to shore up cyber protections for maritime systems and harden current cyber incident reporting rules.

DHS inventory of AI systems for cybersecurity is ‘not accurate’, oversight report says

The report calls on the DHS to better verify its AI inventory submissions and for CISA to develop AI cybersecurity progress metrics.

Chinese hackers embedded in U.S. networks for years, pre-positioning for future attacks, IC warns

The intelligence community used a contested surveillance tool to detect the hacking attempts.

CISA unveils election resource page for officials and workers

Election officials have several fears on their mind this year, including possible foreign interference in elections and physical threats linked to conspiracy theories.

Contracts featuring automation, built-in security can boost agencies’ cyber defenses, VA officials say

As the federal government looks to harden its cyber resilience, officials from the Department of Veterans Affairs said agencies should work to modernize outdated technologies and ensure that vendor contracts include more rigorous security standards.

Agencies must disconnect all exposed Ivanti products by Friday, CISA says

The directive follows a related warning issued last month about cybersecurity flaws in Ivanti systems.

Cyber, intelligence chiefs urge U.S. to strengthen against Chinese cyber threats

In a collective call to action, officials warned of invasive actions that China-backed hackers can take against U.S. infrastructure and elections.

Top cyber, intelligence chiefs to call out China as leading cyber threat

Researchers and officials have previously designated China as a clandestine, preparatory operator in cyberspace, quietly breaching and securing systems to use to their advantage at a later time.

NCA celebrates National Data Privacy Week while CISA eyes new cybersecurity guidelines

The week’s themes reflect a new era  where everything is interconnected and new threats like artificial intelligence are poised to make a big impact on cybersecurity.

Feds to compete for cyber glory at fifth annual President's Cup

CISA officials describe the positive impact the annual cybersecurity game aims to have across the federal workforce.