Cybersecurity

National cybersecurity agencies from the U.S., Australia, Canada, New Zealand and the U.K. have released a joint guide for software manufacturers to create and publish roadmaps for protecting their products...

The Cybersecurity and Infrastructure Security Agency has issued an advisory concerning the exploitation of a vulnerability within select versions of the Adobe ColdFusion web application development platform that resulted in...

The Government Accountability Office found that 20 federal agencies failed to meet the standards for cybersecurity incident response preparedness due to staff shortage, IT challenges and limitations in information sharing....

The Department of Defense's Office of Inspector General released a special report that includes 24 open recommendations to address cybersecurity weaknesses in controlled unclassified information, or CUI, management by the...

The Office of Management and Budget issued guidelines to help federal agencies comply with the Federal Information Security Modernization Act, also known as FISMA, for fiscal year 2024. The guidance...

The Cybersecurity and Infrastructure Security Agency issued an alert on Dec. 1 warning the public about malicious actors currently exploiting Israeli-made programmable logic controllers used in a variety of industries,...

Sandy Radesky, associate director for vulnerability management at the Cybersecurity and Infrastructure Security Agency, said the agency plans to launch the ReadySetCyber tool in early 2024 to provide tailored technical...

The Cybersecurity and Infrastructure Security Agency has released the first publication in its Secure by Design Alerts series to raise awareness of malicious cyber activity against web management interfaces. CISA...

Rick Therrien, director of cybersecurity operations at the Internal Revenue Service, said the IRS has made progress in collecting audit logs and has begun automating its cybersecurity response playbooks by...

The Defense Advanced Research Projects Agency has started soliciting information on potential vendors that could provide classified cyberspace operations and information operations, or COIO, research and development support services. The...