cisa
213 articles with this tag
CRITICAL
CRITICAL
HIGH
CRITICAL
MEDIUM
INFO
HIGH
CRITICAL
INFO
INFO
INFO
INFO
HIGH
INFO
CRITICAL
INFO
CRITICAL
INFO
CRITICAL
CRITICAL
HIGH
HIGH
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
CRITICAL
HIGH
CRITICAL
MEDIUM
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
HIGH
HIGH
INFO
CRITICAL
INFO
HIGH
CRITICAL
MEDIUM
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
CRITICAL
INFO
INFO
INFO
HIGH
CRITICAL
INFO
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
INFO
CRITICAL
CRITICAL
CRITICAL
HIGH
INFO
CRITICAL
INFO
INFO
CRITICAL
INFO
CRITICAL
CRITICAL
MEDIUM
LOW
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
INFO
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
CISA Adds One Known Exploited Vulnerability to Catalog
CISA orders feds to patch actively exploited Ivanti flaw by Sunday
CISA BOD 26-04: Frequently asked questions about the new risk-based patching directive
CISA Adds One Known Exploited Vulnerability to Catalog
CISA orders federal agencies to “patch smarter”
CISA Orders Agencies to Patch by Risk, Not Severity
CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk
CISA tells govt agencies to patch critical exploited flaws in 3 days
CISA directs federal agencies on prioritization of cyber vulnerabilities
CISA Rewrites Federal Patching Requirements for AI Threat Era
CISA Tells US Agencies to Fix Security Bugs in as Little as 3 Days Thanks to AI Threats
CISA tells agencies to patch smarter, not harder — foreshadowing broader industry practice
How Federal Agencies Can Activate a Risk Operations Center (ROC) to Meet CISA BOD 26-04
CISA directive orders agencies to prioritize vulnerability patching in a new way
CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation
CISA to reevaluate risk prioritization for critical infrastructure and federal agencies
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA is rethinking how it prioritizes risks and vulnerabilities for feds, private sector
CISA gives feds 3 days to patch Check Point VPN bug exploited as zero-day
CISA Adds Two Known Exploited Vulnerabilities to Catalog
Malware could drain your fuel tank as well as your bank account
CISA warns of cyberattacks targeting fuel tank monitoring systems
CISA Adds One Known Exploited Vulnerability to Catalog
CISA warns of active attacks exploiting Android, Linux bugs
Two-year old Oracle WebLogic Server vulnerability is being exploited
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA and Partners Urge Hardening Automatic Tank Gauge Systems
CISA flags two-year-old Oracle flaw as actively exploited in attacks
Oracle WebLogic Vulnerability Exploited in the Wild
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
In Other News: Trump Mobile Data Breach, FIFA World Cup Phishing, CISA Responds to Supply Chain Attacks
CISA Adds Three Known Exploited Vulnerabilities to Catalog
Drupal bug added to CISA list of known exploited vulnerabilities
CISA Adds One Known Exploited Vulnerability to Catalog
CISA orders feds to patch actively exploited Drupal vulnerability
CISA adds Trend Micro Apex One and Langflow flaws to exploited vulnerabilities catalog
You can now nominate vulnerabilities for CISA’s KEV with this form
HOW CISA leaked public passwords
CISA Adds One Known Exploited Vulnerability to Catalog
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
CISA Security Leak
CISA’s new KEV nomination form opens reporting to vendors and researchers
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
Lawmakers from both parties say CISA cuts have gone too far
Senator urges classified briefing after CISA data leak on GitHub
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA chief frets about open-source vulnerabilities, delayed security improvements
Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498)
Risky Business #838 -- GitHub investigates possible breach
CISA credential leak raises alarms, and Capitol Hill demands answers
In stunning display of stupid, secret CISA credentials found in public GitHub repo
America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames
Inside the 2026 Verizon DBIR: What One Billion Records Revealed About Vulnerability Remediation
IBM executive floated for CISA director as concerns persist for agency
CISA Adds One Known Exploited Vulnerability to Catalog
April 2026 CVE Landscape
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
NIST NVD Enrichment Policy Change: Prioritizing Vulnerabilities with Attacker Behavior Signals
CISA Adds One Known Exploited Vulnerability to Catalog
CISA’s AI SBOM guidance pushes software supply-chain oversight into new territory
Major world economies spell out key elements of AI ‘ingredients list’
Software Bill of Materials for AI - Minimum Elements
US military data exposed in leaky directory despite CISA notification
CISA Adds One Known Exploited Vulnerability to Catalog
CISA urges critical infrastructure to plan for prolonged service delivery during emergencies
In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner
CISA Adds One Known Exploited Vulnerability to Catalog
Pull the Plug: FIRESTARTER Survives Patches, Reboots, and Your Incident Response Plan
CISA Adds One Known Exploited Vulnerability to Catalog
Governments on high alert after CISA snuffs out Firestarter backdoor on fed network
Security agencies draw red lines around agentic AI deployments
Five Eyes spook shops warn agentic is too wonky for rapid rollout
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
Windows shell spoofing vulnerability puts sensitive data at risk
CISA Adds One Known Exploited Vulnerability to Catalog
In Other News: Scattered Spider Hacker Arrested, SOC Effectiveness Metrics, NSA Tool Vulnerability
Careful Adoption of Agentic AI Services
CISA Adds One Known Exploited Vulnerability to Catalog
CISA and Partners Publish Zero Trust Guidance For OT Security
Dismantle implicit trust in OT networks, CISA tells critical infrastructure operators
CISA adds ConnectWise, Microsoft flaws to KEV catalog
Adapting Zero Trust Principles to Operational Technology
CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA’s Advisory On Botnets: Why Banning SOHO Routers Won’t Fix Critical Infrastructure Cyber Risk
CISA last in line for access to Anthropic Mythos
CISA Adds Four Known Exploited Vulnerabilities to Catalog
Backdoor FIRESTARTER: CISA aggiorna la direttiva dopo violazione federale
Governments on high alert after CISA snuffs out Firestarter backdoor on fed network
New Cisco firewall malware can only be killed by pulling the plug
CISA Adds One Known Exploited Vulnerability to Catalog
Trump's CISA director nominee exits consideration for leadership role
CISA Adds One Known Exploited Vulnerability to Catalog
Another Cisco Catalyst SD-WAN Manager bug added to CISA list
CISA flags new SD-WAN flaw as actively exploited in attacks
CISA flags another Cisco Catalyst SD-WAN Manager bug as exploited (CVE-2026-20133)
Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities
CVE-2026-33554
CISA Adds Eight Known Exploited Vulnerabilities to Catalog