Cybersecurity is a critical issue because it encompasses everything from improving business operations to protecting consumer privacy and staying ahead of network weaknesses. NASCUS is accumulating links and resources to help improve functionality and keep your information safe.
CISA and its partners, through the Joint Cyber Defense Collaborative, are responding to active, widespread exploitation of a critical remote code execution (RCE) vulnerability (CVE-2021-44228) in Apache’s Log4j software library, versions 2.0-beta9 to 2.14.1, known as "Log4Shell."
The Cybersecurity and Infrastructure Security Agency (CISA) is the Nation’s risk advisor, working with partners to defend against today’s threats and collaborating to build more secure and resilient infrastructure for the future.
Take action on the most recent vulnerabilities. Click to learn more. Updated regularly.
July 13, 2021 — CISA has created a webpage to provide information and guidance for the recent ransomware attack against Kaseya customers that include managed service providers (MSPs) and customers of...
The ICT Supply Chain Risk Management (SCRM) fact sheet is a quick reference guide that companies and organizations can download or share to raise awareness of information and communications technology (ICT) supply chain risks and to help build a national culture of supply chain security.
Ransomware is an ever-evolving form of malware designed to encrypt files on a device, rendering any files and the systems that rely on them unusable. Malicious actors then demand ransom in exchange for decryption. Ransomware actors often target and threaten to sell or leak exfiltrated data or authentication information if the ransom is not paid. Click for links to CISA information on protection against ransomware.
The Federal Financial Institutions Examination Council (FFIEC) members are taking a number of initiatives to raise the awareness of financial institutions and their critical third-party service providers with respect to...