#CISA

#CISA

Chris Krebs and David Luber are among four new additions to the Cyber Safety Review Board, contributing their cybersecurity expertise. [ more ]

Physical threats to election administrators are a major concern overshadowing AI-related worries at the RSA Conference. [ more ]

CISA has published a roadmap to promote the use of AI in cybersecurity and support critical infrastructure organizations.

The roadmap emphasizes the need for security practices in AI systems and encourages AI system makers to follow secure-by-design principles.

CISA plans to integrate AI across its systems to defend against cyber threats and protect critical infrastructure. [ more ]

The Cybersecurity and Infrastructure Security Agency (CISA) has launched a Roadmap for Artificial Intelligence (AI) to establish levels of regulation within machine learning technologies.

The roadmap focuses on five lines of effort: responsibly using AI to support missions, assuring the safety of AI systems, protecting critical infrastructure from malicious use of AI, collaborating with partners, and expanding AI expertise within the agency's workforce.

CISA plans to assess the state of AI adoption, establish AI policy positions, and improve its workforce through recruitment and training. [ more ]

Biden administration updated federal infrastructure protection policy via NSM-22, linking it to modern cyber threat landscape, but fell short by not including space and cloud industries. [ more ]

Rep. Andrew Garbarino aims to dissolve SEC cybersecurity incident disclosure rule, favoring Cybersecurity and Infrastructure Security Agency for handling such disclosures. [ more ]

More funding is crucial for CISA to enhance cybersecurity defense, particularly against Chinese hackers in critical infrastructure. [ more ]

The pledge offers flexibility to companies in meeting goals but emphasizes public progress and sharing techniques. [ more ]

CISA warns Russian spies stole sensitive data from Microsoft's email system; agencies need immediate remedial action. [ more ]

CISA issued advisory on ALPHV/BlackCat ransomware targeting US healthcare sector

New ALPHV/BlackCat version with advanced capabilities like targeting VMware environments [ more ]

Federal agencies running Ivanti Connect Secure or Ivanti Policy Secure devices must disconnect them due to cyber espionage linked to China.

CISA has issued instructions for updating and bringing the devices back online. [ more ]

The White House reaffirmed its commitment to a SEC rule on cybersecurity disclosures and stated that President Biden would veto any efforts to eliminate the regulation.

Lawmakers both in the Senate and the House have proposed measures to nullify the SEC rule, arguing that disclosing cyber incidents could compromise businesses and national security. [ more ]

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned of active exploitation of a high-severity Adobe ColdFusion vulnerability by unidentified threat actors.

The vulnerability (CVE-2023-26360) allows for arbitrary code execution and affects ColdFusion 2018 and ColdFusion 2021 versions. [ more ]

CISA has removed a security vulnerability (CVE-2022-28958) from its Known Exploited Vulnerability catalog after it was found to be a fake vulnerability.

The vulnerability was thought to be a critical remote code execution flaw but had no impact on the systems it targeted. [ more ]

A federal agency had at least two public-facing servers compromised by attackers exploiting a critical Adobe ColdFusion vulnerability.

The agency failed to patch the vulnerability for more than three months after the deadline set by CISA. [ more ]

CISA is launching a pilot program to provide cybersecurity services to critical infrastructure entities in need.

The pilot program is a response to the increasing volume and impact of cyberattacks on critical infrastructure organizations.

CISA plans to expand the pilot program to include 100 different entities across sectors this year. [ more ]

The cybercrime group known as Scattered Spider is still operating and attacking US organizations despite being known to law enforcement for over six months.

Law enforcement's failure to make arrests or disrupt the group's activities is seen as a failure in cybersecurity law enforcement.

The FBI and CISA have released an advisory on Scattered Spider, providing recommendations for organizations to improve their cybersecurity posture. [ more ]

CISA has released a mitigation guide for the Healthcare and Public Health sector to combat cyber threats.

The guide provides defensive mitigation strategy recommendations and identifies known vulnerabilities for organizations to assess their networks.

HPH entities are encouraged to visit CISA's Healthcare and Public Health Cybersecurity Toolkit and Sector webpages for more information. [ more ]

CISA added Sophos, Oracle, and Microsoft product flaws to its Known Exploited Vulnerabilities catalog.

The Sophos flaw CVE-2023-1671 is a critical vulnerability that can be exploited for arbitrary code execution.

CVE-2020-2551 is an Oracle WebLogic Server flaw targeted by a Chinese threat actor in attacks on government and critical infrastructure organizations in Taiwan. [ more ]

The Cybersecurity and Infrastructure Security Agency (CISA) was launched as the federal government's go-to cyber policy and incident response shop.

CISA was formed from the old National Protection and Programs Directorate at the Department of Homeland Security.

CISA has experienced significant growth in staff and funding in recent years. [ more ]