3 天之前 · CISA published the updated version of the TIC 3.0 Security Capabilities Catalog version 3.2. The SCC was recently updated based on the new National Institute of Standards and Technology Cyber Security Framework Version 2.0 mapping updates.

CISA works with partners to defend against today’s threats and collaborate to build a more secure and resilient infrastructure for the future. Read CISA's Fact Sheet to learn more. Mission. We lead the national effort to understand, manage, and reduce risk to our cyber and physical infrastructure. Vision

CISA does not attest to the suitability or effectiveness of these services and tools for any particular use case. CISA does not endorse any commercial product or service. Any reference to specific commercial products, processes, or services by service mark, trademark, manufacturer, or otherwise, does not constitute or imply their endorsement ...

In light of the risk and potential consequences of cyber events, CISA strengthens the security and resilience of cyberspace, an important homeland security mission. CISA offers a range of cybersecurity services and resources focused on operational resilience, cybersecurity practices, organizational management of external dependencies, and other ...

2025年1月17日 · CISA offers an array of free resources and tools, such as technical assistance, exercises, cybersecurity assessments, free training, and more. Services CISA provides a variety of risk management and response services to build stakeholder resiliency and form partnerships.

2025年3月4日 · CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-50302 Linux Kernel Use of Uninitialized Resource Vulnerability; CVE-2025-22225 VMware ESXi Arbitrary Write Vulnerability; CVE-2025-22224 VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

CISA Releases Three Industrial Control Systems Advisories. Mar 06, 2025. ICS Advisory | ICSA-25-065-02 ...

Additionally, CISA, the FBI, and NSA encourage U.S. critical infrastructure owners and operators to see CISA’s Federal Government Cybersecurity Incident and Vulnerability Response Playbooks. Although tailored to federal civilian branch agencies, these playbooks provide operational procedures for planning and conducting cybersecurity incident ...

2025年2月19日 · Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and Multi-State Information Sharing and Analysis Center (MS-ISAC)—released a joint Cybersecurity Advisory, #StopRansomware: Ghost (Cring) Ransomware. This advisory provides network defenders with indicators of compromise (IOCs), tactics, techniques, and procedures ...

2025年1月16日 · CISA Learning, the Cybersecurity and Infrastructure Security Agency (CISA) learning management system, provides cybersecurity and infrastructure security training free of charge to our partners from federal, state, local, tribal, and territorial levels of government, the private sector, our veterans and the general public.