Cybersecurity
CISA officials commit to supporting top vulnerability cataloging program
Organizations around the world rely on the Common Vulnerabilities and Exposures Program, whose contract with CISA almost expired in April. It serves as the worldwide, de facto standard for vulnerability identification and management.
Updated
Cybersecurity
‘High-severity’ Microsoft Exchange vulnerability disclosed on heels of Black Hat talk
Parts of the federal enterprise are likely susceptible to the flaw that allows hackers to hijack on-premises versions of Active Directory. CISA plans to release an emergency directive on Thursday, according to a person familiar with the matter.
Cybersecurity
Federal CISO urges cyber community to start sharing and scaling their solutions
The Trump administration wants to ease regulatory burdens on the cyber industry with a mindset where there is still room for policymaking. It largely begins with the private sector.
Cybersecurity
Former and current officials clash over CISA’s role in US cyber defenses at Black Hat
CISA’s communications chief backed the narrowing of the agency’s scope, while a former NSA leader warned that shrinking the federal cyber workforce risks weakening U.S. defenses.
People
Army rescinds West Point role for ex‑CISA director after pressure from Laura Loomer
Jen Easterly was one of the top cybersecurity officials that served in the Biden administration and is a West Point alumna.
People
Senate panel advances CISA director nominee to full Senate floor vote
Sean Plankey may still have to contend with a hold from Senator Ron Wyden over objections to the cyber defense agency not releasing a 2022 report on telecommunications industry vulnerabilities. The agency said it plans to release it.
Cybersecurity
CISA to release telecom security report as its director nominee nears confirmation
The 2022 report, which has not been made publicly available, has been used as leverage by Senator Ron Wyden to hold Sean Plankey from being confirmed as director of CISA.
Cybersecurity
Trump’s CISA nominee is confident he can get funding to cyber agency where needed
Sean Plankey, a former Energy Department cyber official, tussled with Sen. Richard Blumenthal, D-Conn., over 2020 election security during his confirmation hearing. He also committed to the renewal of a key cyber information-sharing law before it soon expires.
Cybersecurity
Operational tech is ‘underprioritized’ in cyberdefense, experts tell Congress
Witnesses' calls for better investment in securing such systems come just two months before a key cybersecurity information-sharing law is set to expire.
People
Trump’s CISA nominee to testify before Senate panel next week
Sean Plankey served at the Energy Department and National Security Council during Trump’s first term.
Cybersecurity
Secure by Design is just the start, CISA official says
A program manager for the Cybersecurity and Infrastructure Security Agency said ongoing threat vigilance is needed post-implementation of the agency’s Secure by Design framework.
Cybersecurity
CISA’s executive director is leaving the agency
Bridget Bean had been with CISA for over three years, during which time she also briefly served as the acting director of the cyber agency.
Cybersecurity
US agencies assessed Chinese telecom hackers likely hit data center and residential internet providers
Data center giant Digital Realty and mass media titan Comcast were documented as likely victims of the Salt Typhoon cyberespionage group, people familiar say, marking a potentially major expansion of the group’s initial telecom hacking campaign discovered last year.
Cybersecurity
Wrong time for Trump admin to end mobile app security program, cyber lawmaker says
Amid a major Chinese intrusion into U.S. telecoms, New York Republican Rep. Andrew Garbarino says CISA’s Mobile App Vetting program shouldn’t be terminated.
Cybersecurity
Senate Homeland panel likely to approve Cairncross, Plankey for key cyber positions
Sean Plankey, tapped to lead CISA, did not appear at a Thursday hearing due to reported clearance-related delays, but his name was still added to a list of nominees to be voted on next week.
Cybersecurity
CISA projected to lose a third of its workforce under Trump’s 2026 budget
The White House’s latest spending proposal projects nearly 1,000 jobs will be slashed at the nation’s lead civilian cyber agency. Related cyber and intel programs across government also face funding rollbacks.
People
Trump cyber nominees expected to testify next week, people familiar say
An unreleased telecom vulnerabilities report is being used as leverage to block one of the nominees from full confirmation in the Senate.
People
Top CISA division chiefs depart amid broader agency reduction plans
The staffing shake-up comes as former officials argue that diminishing staff at the government’s primary cybersecurity agency is ill-advised given today’s escalating threat landscape.
People
CISA’s deputy cyber chief plans to depart
Matt Hartman’s final day is not known but his departure was announced Tuesday.
Exclusive
People