cisa guidance

CISA and G7 cybersecurity partners from Germany, Canada, France, Italy, Japan, the United Kingdom, and the European Union have released voluntary guidance called Software Bill of Materials for AI – Minimum Elements to define baseline transparency data for artificial intelligence systems and...

CISA, the NSA, ASD’s Australian Cyber Security Centre, and cyber agencies from Canada, New Zealand, and the United Kingdom released “Careful Adoption of Agentic AI Services” on April 30 and May 1, 2026, warning organizations to deploy autonomous AI agents only with strict security controls. The...

CISA and partner agencies have released new joint guidance urging owners and operators of operational technology systems to adapt zero trust principles to industrial environments where connected sensors, remote access, legacy controllers, and safety-critical processes have made old perimeter...

The FIRESTARTER backdoor is a reminder that patching vulnerable Cisco edge devices is only half the battle: if attackers implant persistence before remediation, they can survive firmware updates and return later without re-exploiting the original flaw. CISA and the U.K. NCSC say the malware was...

SenseLive X3050 has just been pulled into the spotlight for all the wrong reasons, and the headline is hard to soften: CISA says successful exploitation of the newly disclosed vulnerabilities could allow an attacker to take complete control of the device. The advisory covers SenseLive X3050...

Microsoft’s Intune security posture is suddenly under a much harsher spotlight after the U.S. government urged organizations to harden endpoint management systems in the wake of the Stryker intrusion. The concern is not just that attackers got into a large medical technology company’s Microsoft...

CISA’s decision to add CVE‑2025‑47813 — an information‑disclosure flaw in Wing FTP Server — to the Known Exploited Vulnerabilities (KEV) Catalog marks another reminder that even so‑called “low‑severity” bugs can be strategically valuable to attackers and deserve operational attention from...

CISA’s new guidance, "Barriers to Secure OT Communication: Why Johnny Can’t Authenticate," bluntly reframes a long-standing truth for industrial operators: the cryptographic and authentication features necessary to stop simple, high-impact attacks exist in many pockets, yet they are rarely...

The United States’ cybersecurity apparatus has raised the alarm: edge devices that have reached end-of-support (EOS) are being actively hunted and exploited by nation‑state actors, and organizations must act now to reduce their exposure. This is not theoretical guidance — a joint fact sheet from...

CISA’s latest KEV update elevates four distinct and high-impact vulnerabilities—two in Sangoma FreePBX, one in GitLab, and one in SolarWinds Web Help Desk—into the Known Exploited Vulnerabilities (KEV) Catalog, signaling credible evidence of active exploitation and forcing an operational...

CISA has added a Microsoft Windows information‑disclosure vulnerability tracked as CVE‑2026‑20805 to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation and triggering urgent remediation expectations under Binding Operational Directive (BOD) 22‑01 for...