CISA
-
Bug bounty & rewards
What CISA KEV Is And Isn’t And A Tool To Help Security Teams
A new paper gives an insider's perspective into CISA's Known Exploited Vulnerability catalog – and also offers a free tool…
-
Budgets
End-of-Support Edge Devices Now Pose Federal Cyber Risk
The growing cyber threat from End-of-Support edge devices is no longer a technical inconvenience, it is a national cybersecurity liability.…
-
Startups
CISA Silently Updates Vulnerabilities Exploited By Ransomware Groups
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has been “silently” updating its Known Exploited Vulnerabilities (KEV) catalog when it…
-
Vulnerabilities
Ivanti Patches Two Exploited Zero-Days In Mobile Manager
Two code injection vulnerabilities allowed unauthenticated attackers to execute arbitrary code and access sensitive device information across compromised networks. Ivanti…
-
Workforce
USDA Adopts Phishing-Resistant MFA To Boost Cybersecurity
Credential phishing remains a formidable threat to organizations worldwide, with malicious actors often relying on tricking individuals into voluntarily revealing…
-
Startups
CISA Chief Triggered Internal Cybersecurity Warning
The acting head of the federal government's top cyber defense agency triggered an internal cybersecurity warning last summer after uploading sensitive government…
-
Budgets
Critical VMware VCenter Server Flaw CVE-2024-37079
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting VMware vCenter Server to its Known…
-
Budgets
CISA Adds 5 Enterprise Software Flaws To KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added five enterprise software flaws to its Known Exploited Vulnerabilities (KEV)…
-
Bug bounty & rewards
Jen Easterly To Lead RSA Conference’s Ambitious Expansion
Former CISA Director Jen Easterly will become CEO of RSA Conference LLC and its flagship annual cybersecurity conference, RSAC announced…
-
Budgets
Patch Tuesday January 2026: Exploited Zero Day, 8 High-Risk
Microsoft's Patch Tuesday January 2026 update includes fixes for one actively-exploited zero day vulnerability and eight additional high-risk flaws. In…