cisa
181 articles with this tag
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
HIGH
HIGH
INFO
CRITICAL
INFO
HIGH
CRITICAL
MEDIUM
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
CRITICAL
INFO
INFO
INFO
HIGH
CRITICAL
INFO
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
INFO
CRITICAL
CRITICAL
CRITICAL
HIGH
INFO
CRITICAL
INFO
INFO
CRITICAL
INFO
CRITICAL
CRITICAL
MEDIUM
LOW
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
CRITICAL
CRITICAL
INFO
CRITICAL
INFO
INFO
CRITICAL
CRITICAL
INFO
INFO
CRITICAL
CRITICAL
INFO
CRITICAL
CRITICAL
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
HIGH
CRITICAL
HIGH
CISA Adds Three Known Exploited Vulnerabilities to Catalog
Drupal bug added to CISA list of known exploited vulnerabilities
CISA Adds One Known Exploited Vulnerability to Catalog
CISA orders feds to patch actively exploited Drupal vulnerability
CISA adds Trend Micro Apex One and Langflow flaws to exploited vulnerabilities catalog
You can now nominate vulnerabilities for CISA’s KEV with this form
HOW CISA leaked public passwords
CISA Adds One Known Exploited Vulnerability to Catalog
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
CISA Security Leak
CISA’s new KEV nomination form opens reporting to vendors and researchers
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
Lawmakers from both parties say CISA cuts have gone too far
Senator urges classified briefing after CISA data leak on GitHub
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA chief frets about open-source vulnerabilities, delayed security improvements
Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498)
Risky Business #838 -- GitHub investigates possible breach
CISA credential leak raises alarms, and Capitol Hill demands answers
In stunning display of stupid, secret CISA credentials found in public GitHub repo
America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames
Inside the 2026 Verizon DBIR: What One Billion Records Revealed About Vulnerability Remediation
IBM executive floated for CISA director as concerns persist for agency
CISA Adds One Known Exploited Vulnerability to Catalog
April 2026 CVE Landscape
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
NIST NVD Enrichment Policy Change: Prioritizing Vulnerabilities with Attacker Behavior Signals
CISA Adds One Known Exploited Vulnerability to Catalog
CISA’s AI SBOM guidance pushes software supply-chain oversight into new territory
Major world economies spell out key elements of AI ‘ingredients list’
Software Bill of Materials for AI - Minimum Elements
US military data exposed in leaky directory despite CISA notification
CISA Adds One Known Exploited Vulnerability to Catalog
CISA urges critical infrastructure to plan for prolonged service delivery during emergencies
In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner
CISA Adds One Known Exploited Vulnerability to Catalog
Pull the Plug: FIRESTARTER Survives Patches, Reboots, and Your Incident Response Plan
CISA Adds One Known Exploited Vulnerability to Catalog
Governments on high alert after CISA snuffs out Firestarter backdoor on fed network
Security agencies draw red lines around agentic AI deployments
Five Eyes spook shops warn agentic is too wonky for rapid rollout
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
Windows shell spoofing vulnerability puts sensitive data at risk
CISA Adds One Known Exploited Vulnerability to Catalog
In Other News: Scattered Spider Hacker Arrested, SOC Effectiveness Metrics, NSA Tool Vulnerability
Careful Adoption of Agentic AI Services
CISA Adds One Known Exploited Vulnerability to Catalog
CISA and Partners Publish Zero Trust Guidance For OT Security
Dismantle implicit trust in OT networks, CISA tells critical infrastructure operators
CISA adds ConnectWise, Microsoft flaws to KEV catalog
Adapting Zero Trust Principles to Operational Technology
CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA’s Advisory On Botnets: Why Banning SOHO Routers Won’t Fix Critical Infrastructure Cyber Risk
CISA last in line for access to Anthropic Mythos
CISA Adds Four Known Exploited Vulnerabilities to Catalog
Backdoor FIRESTARTER: CISA aggiorna la direttiva dopo violazione federale
Governments on high alert after CISA snuffs out Firestarter backdoor on fed network
New Cisco firewall malware can only be killed by pulling the plug
CISA Adds One Known Exploited Vulnerability to Catalog
Trump's CISA director nominee exits consideration for leadership role
CISA Adds One Known Exploited Vulnerability to Catalog
Another Cisco Catalyst SD-WAN Manager bug added to CISA list
CISA flags new SD-WAN flaw as actively exploited in attacks
CISA flags another Cisco Catalyst SD-WAN Manager bug as exploited (CVE-2026-20133)
Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities
CVE-2026-33554
CISA Adds Eight Known Exploited Vulnerabilities to Catalog
CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack
NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions
NIST cuts down CVE analysis amid vulnerability overload
CISA Adds One Known Exploited Vulnerability to Catalog
NIST Prioritizes NVD Enrichment for CVEs in CISA KEV, Critical Software
European Cybersecurity Agency ENISA Seeks Top-Tier Status in CVE Program
CISA flags Windows Task Host vulnerability as exploited in attacks
Ancient Excel bug comes out of retirement for active attacks
Risky Business #833 -- The Great Mythos Freakout of 2026
CISA cancels summer internships for cyber scholarship students amid DHS funding lapse
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software
Analysis of one billion CISA KEV remediation records exposes limits of human-scale security
CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday
CISA Adds One Known Exploited Vulnerability to Catalog
Iran‑Backed Threat Actors Hit US CNI Providers via Internet‑Facing OT Assets
CISA orders feds to patch exploited Fortinet EMS flaw by Friday
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521)
CISA Adds One Known Exploited Vulnerability to Catalog
Attackers exploit critical Langflow RCE within hours as CISA sounds alarm
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
FBI, CISA warn of Russian hackers hijacking Signal and WhatsApp accounts
FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks
Russian Intelligence Services Target Commercial Messaging Application Accounts
CISA urges IT to harden endpoint management systems after cyberattack by pro-Iranian group
CISA Adds One Known Exploited Vulnerability to Catalog
Secure endpoint management systems immediately, CISA urges