CISA Archives - Help Net Security

CISA

CISA orders federal agencies to regularly perform IT asset discovery, vulnerability enumeration

October 5, 2022

A new directive issued by the Cybersecurity and Infrastructure Security Agency (CISA) is ordering US federal civilian agencies to perform regular asset discovery and …

Critical ManageEngine RCE flaw is being exploited (CVE-2022-35405)

September 23, 2022

The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2022-35405, a critical remote code execution vulnerability in ManageEngine PAM360, Password …

US to award $1B to state, local, and territorial governments to improve cyber resilience

September 21, 2022

The US government will award $1 billion in grants to help state, local, and territorial (SLT) governments address cybersecurity risks, strengthen the cybersecurity of their …

Is $15.6 billion enough to protect critical infrastructure?

September 21, 2022

Several bills totaling $15.6 billion are making their way through the House for the 2023 fiscal year. While $11.2 billion will go to the Department of Defense, $2.9 billion …

IronNet partners with CISA to improve nation’s cyber defense

August 18, 2022

IronNet has entered into an agreement with the Cybersecurity and Infrastructure Security Agency (CISA) to share information from IronNet’s Collective Defense platform to help …

Black Hat USA 2022 video walkthrough

August 11, 2022

In this Help Net Security video, we take you inside Black Hat USA 2022 at the Mandalay Bay Convention Center in Las Vegas. The video features the following vendors: Abnormal …

USA’s plan to build its cyber workforce, improve skills-based pathways to cyber jobs

July 22, 2022

On July 19, 2022, National Cyber Director Chris Inglis hosted the National Cyber Workforce and Education Summit at the White House. The event focused on building the cyber …

Healthcare organizations targeted with Maui ransomware

July 7, 2022

A less known ransomware threat dubbed Maui has been and is likely to continue hitting healthcare organizations, a new CISA alert warns. Maui is unusual in many ways: it does …

CISA and NPower offer free entry-level cybersecurity training

July 6, 2022

NPower, a US-based non-profit participating in a cybersecurity workforce development program started by the Cybersecurity and Infrastructure Agency (CISA), is looking for …

NIST selects 4 quantum-resistant encryption algorithms

July 6, 2022

The U.S. Department of Commerce’s National Institute of Standards and Technology (NIST) has chosen the first group of quantum-resistant encryption tools, designed to withstand …

Attackers still exploit Log4Shell on VMware Horizon servers, CISA warns

June 24, 2022

If your organization is running VMware Horizon and Unified Access Gateway servers and you haven’t implemented the patches or workarounds to fix/mitigate the Log4Shell …

VMware issues critical fixes, CISA orders federal agencies to act immediately (CVE-2022-22972)

May 19, 2022

VMware has released patches for a privately reported critical vulnerability (CVE-2022-22972) in VMware’s Workspace ONE Access, VMware Identity Manager (vIDM), vRealize …

CISA

CISA orders federal agencies to regularly perform IT asset discovery, vulnerability enumeration

Critical ManageEngine RCE flaw is being exploited (CVE-2022-35405)

US to award $1B to state, local, and territorial governments to improve cyber resilience

Is $15.6 billion enough to protect critical infrastructure?

IronNet partners with CISA to improve nation’s cyber defense

Black Hat USA 2022 video walkthrough

USA’s plan to build its cyber workforce, improve skills-based pathways to cyber jobs

Healthcare organizations targeted with Maui ransomware

CISA and NPower offer free entry-level cybersecurity training

NIST selects 4 quantum-resistant encryption algorithms

Attackers still exploit Log4Shell on VMware Horizon servers, CISA warns

VMware issues critical fixes, CISA orders federal agencies to act immediately (CVE-2022-22972)

Don't miss

Former Uber CSO convicted for concealing data breach, theft from the authorities

Unearth offboarding risks before your employees say goodbye

The gap between security and privacy, and what it will take to bridge it

APIs are quickly becoming the most popular attack vector

Fine-tuning Germany’s cybersecurity strategy