Cybersecurity and Infrastructure Security Agency (CISA) Archives

A logo sign outside of the headquarters of Ivanti in South Jordan, Utah. (Kristoffer Tripplaar / Alamy Stock Photo)

Is Ivanti the problem or a symptom of a systemic issue with network devices?

Exploited vulnerabilities have turned up in Ivanti products 16 times since 2024. That’s more than any other vendor in the network edge device space.

12 hours ago By Matt Kapko

Rep. Eric Swalwell, D-Calif., speaks during the Hands Off! day of action against the Trump administration and Elon Musk on April 5 in Washington, D.C. (Photo by Paul Morigi/Getty Images for Community Change Action)

Rep. Swalwell demands Hill briefing on planned CISA personnel cuts

The top Democrat on a cybersecurity subcommittee says the “drastic reorganization” obligates CISA’s acting director to discuss its plans with lawmakers.

3 days ago By Tim Starks

Christopher Krebs, former CISA director, testifies during a Senate Armed Services Committee hearing on Capitol Hill, October 19, 2017 in Washington, DC.(Photo by Drew Angerer/Getty Images)

Trump signs order stripping Chris Krebs of security clearance

The executive order also eliminates security clearances for SentinelOne employees.

5 days ago By Greg Otto

US Treasury Department building, Washington DC (Getty Images)

Treasury bureau notifies Congress that email hack was a ‘major’ cybersecurity incident

The OCC said the February incident resulted in the theft of “highly sensitive information" tied to the financial conditions of federally regulated institutions.

5 days ago By Derek B. Johnson

International intelligence agencies raise the alarm on fast flux

The NSA and its partners want organizations to protect themselves against the technique, which can be tough to spot.

Apr 3, 2025 By Greg Otto

Rep. Andrew Garbarino R-N.Y., departs from a House Ethics Committee closed-door meeting on Nov. 20, 2024. (Photo by Kevin Dietsch/Getty Images)

Don’t cut CISA personnel, House panel leaders say, as they plan legislation giving the agency more to do

Reps. Andrew Garbarino and Eric Swalwell said legislative priorities include an expiring information-sharing law and making a threat information-sharing organization permanent.

Apr 2, 2025 By Tim Starks

ransomware healthcare — The healthcare sector has seen enterprises both large and small shut down due to ransomware attacks. (Getty Images)

Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity

As medical devices are bought and re-sold on the secondary market, they become harder to find and patch when a new vulnerability is discovered, a doctor told…

Apr 1, 2025 By Derek B. Johnson

Renew — but improve — billion-dollar cyber grant program to states and locals, House witnesses say

The program faces a number of challenges before it is set to expire, during a time where state and local governments face a bevy of cyber risks…

Apr 1, 2025 By Tim Starks

Trump’s ‘preparedness’ executive order would shift cyber defense burden where it doesn’t belong, experts say

The order says state and local governments should “own” addressing risks like cyberattacks. It’s a mismatch when a small town goes up against China, experts countered.

Mar 28, 2025 By Tim Starks Colin Wood

DHS supply chain security — (U.S. Customs and Border Protection / Flickr)

How DHS is working to continually improve the Continuous Diagnostics and Mitigation program

Two CISA officials detailed the way agencies are leveraging the program to get the best CDM can offer.

Mar 19, 2025 By Greg Otto