Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly said today she is confident that Congress will give CISA the funding it needs to execute on its mission even in times of skinnier Federal budgets, and emphasized her belief that cybersecurity is an issue with substantial bipartisan support among lawmakers. […]

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), the FBI, and international cybersecurity agencies issued a joint cybersecurity advisory to highlight a recently discovered cluster of cyber activity linked to a People’s Republic of China (PRC) state-sponsored cyber actor dubbed Volt Typhoon. […]

Members of the House Committee on Homeland Security sent a letter to Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency (CISA), on May 23 asking about the agency’s progress in defending critical information and communications technology (ICT) supply chains. […]

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and the FBI, along with international partners, released a joint cybersecurity advisory on Wednesday sharing technical details regarding malicious activity by a People’s Republic of China (PRC) state-sponsored cyber actor. […]

As ransomware continues to be a severe issue that is plaguing many across the cybersecurity landscape, a new update has just been released through the Joint Ransomware Task Force (JRTF) to address these growing threats. […]

Officials from the Department of Education (DOE) and the Cybersecurity and Infrastructure Security Agency (CISA) discussed their agencies’ progress on the migration to zero trust security architectures at MeriTalk’s Cyber Central in Washington, D.C. […]

A new congressional voice on cybersecurity issues is vowing to heighten oversight of the Cybersecurity and Infrastructure Security Agency (CISA) to help fight the growing threat of cyberattacks. […]

Almost two years ago, a ransomware attack on the Colonial Pipeline Company, a major supplier of fuel to the northeastern U.S., pushed the Transportation Security Administration (TSA) to develop directives for pipeline owners and operators to implement cybersecurity measures. […]

The Office of Management and Budget (OMB) said in its FY2022 FISMA Report that the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program counted 48 Federal agencies that were making notable progress on deployments of endpoint and detection response (EDR) technologies by the end of fiscal year 2022 that ended last Sept. 30. […]

A group of bipartisan senators has introduced legislation that would require the Cybersecurity and Infrastructure Security Agency (CISA) to help commercial satellite companies and owners to better defend themselves against cyberthreats across the globe. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on April 27 released for public comment its proposed Secure Software Self-Attestation Common Form that will help to advance a key aspect of President Biden’s 2021 cybersecurity executive order on creating a more secure software supply chain. […]

Officials from the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Cyber Command’s (USCYBERCOM) Cyber National Mission Force (CNMF) revealed this week that collaboration between their agencies was able to prevent two potentially dangerous cyberattacks, including the disruption of an Iranian effort to target election infrastructure. […]

If you’re heading to the RSA Conference in San Francisco in person, or even if you’re staying home in hopes of getting the latest cybersecurity intel from keynotes that will become available from the conference, here’s our curated run-down on what the MeriTalk newsroom is watching for news breakers. […]

The Cybersecurity and Infrastructure Security Agency (CISA) is seeking $425 million of fiscal year 2024 funding to put into motion a giant technology leap forward in how the agency analyzes the ever-growing volume of cybersecurity data that it needs to sift through to identify threats and vulnerabilities. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today announced plans to develop and establish its own version of the Logging Made Easy (LME) tool – an open-source project that provides basic logging of security information on enrolled Windows devices.  […]

Ninety-five percent of Federal IT executives say their agencies are investing in in-house AI skills development – but in the past year, half of agencies had an AI project fail due to lack of in-house expertise, according to research from MeriTalk and Future Tech. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has appointed Kathryn Coulter Mitchell as the agency’s chief of staff. […]

The Cybersecurity and Infrastructure Security Agency (CISA) published its secure-by-design and -default guidance today, which CISA Director Jen Easterly said is all about driving down cyber vulnerabilities to near zero. […]

The Cybersecurity and Infrastructure Security Agency (CISA) published its secure-by-design and secure-by-default guidelines today, which aim to outline clear steps that technology providers can take to increase the safety of products used around the world. […]

The Cybersecurity and Infrastructure Security Agency (CISA) will unveil its secure-by-design guiding principles tomorrow, CISA Director Jen Easterly said during the Crowdstrike Government Summit in Washington, D.C., this week. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today published an updated, second version of its Zero Trust Maturity Model that is guiding Federal agencies and other organizations along the path to adopting zero trust security architectures. […]

Rep. Eric Swalwell, D-Calif., is planning to introduce legislation to clarify the role of the Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC) program and criteria for membership in the group. […]

In a new report, the Government Accountability Office (GAO) is asking the Cybersecurity and Infrastructure Security Agency (CISA) to develop time frames on when it will complete its work in helping sector risk management agencies (SRMAs) to implement their fiscal year (FY) 2021 National Defense Authorization Act (NDAA) responsibilities. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on March 21 released stakeholder-driven updates to the Cybersecurity Performance Goals (CPGs) for critical infrastructure entities and businesses that the agency issued last year. […]

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) released new guidance on March 21 that offers system administrators best practices for identity and access management (IAM). […]

The?Cybersecurity and Infrastructure Security Agency (CISA) said late Wednesday that it has accepted in whole or in part 29 recommendations put forth by its Cybersecurity Advisory Committee (CSAC), which was created to provide cybersecurity recommendations to CISA Director Jen Easterly. […]

Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly today announced the appointment of new members to the CISA Cybersecurity Advisory Committee (CSAC), who will help advise her on policies and initiatives to bolster the nation’s cybersecurity posture. The announcement comes just in time for the committee’s next meeting, which will be held virtually tomorrow, […]

The Cybersecurity and Infrastructure Security Agency (CISA) is expanding its Mobile App Vetting (MAV) beta service that allows the agency to help combat the use of “bad applications” that can expose cybersecurity flaws for agencies. […]

The Cybersecurity and Infrastructure Security Agency said on March 15 that multiple attackers were able to compromise a system at one unnamed Federal civilian executive branch agency from November 2022 to January 2023, and issued an advisory for other organizations to take action to mitigate any similar vulnerability. […]

The Cybersecurity and Infrastructure Security Agency (CISA) announced on Monday its new Ransomware Vulnerability Warning Pilot (RVWP) to warn critical infrastructure entities of vulnerabilities commonly associated with known ransomware exploitation. […]