GovCon Wire

ECS Secures $528M CISA CDM Task Order for Data Integration Support

The federal IT systems integrator said Thursday it will design, build and deliver a platform designed to standardize the integration of cybersecurity data from various CDM platforms across federal ...
GovCon Wire

Inside CISA’s $3B FY 2025 Budget

The Cybersecurity and Infrastructure Security Agency has a budget of $3 billion for fiscal year 2025, $1.7 billion of which will go towards cybersecurity efforts to advance programs that detect and ...
Homeland Security Today

CISA’s Internship Program Delivers Outstanding Results in Vulnerability Management

The Cybersecurity and Infrastructure Security Agency (CISA) continues to set the standard for federal government innovation with its 2024 summer internship program, particularly within its ...
Nextgov

CISA weighs ‘alternative funding sources’ to preserve cyber vulnerability-tracking project

The Cybersecurity and Infrastructure Security Agency is exploring more diversified funding mechanisms to help cover the cost of a bedrock vulnerability cataloging program that’s been relied upon by ...
Dark Reading

CISA: Second BeyondTrust Vulnerability Added to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) is urging federal agencies to patch a command injection flaw tracked as CVE-2024-12686, otherwise known as BT24-11, and has added it to the ...
CRN

‘Critical’ Citrix NetScaler Vulnerability Now Seeing Exploitation: CISA

The U.S. cybersecurity agency ordered Federal Civilian Executive Branch agencies to implement fixes for the issue by end of day Friday. A critical-severity vulnerability affecting two Citrix NetScaler ...
SDxCentral

CISA adds CVE-2025-30154 to its vulnerability catalog

Cybersecurity and Infrastructure Security Agency (CISA) has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-30154 ...
CRN

ConnectWise ScreenConnect Vulnerability Exploited: CISA

The ConnectWise ScreenConnect vulnerability, which earlier this year was identified as a potential way for threat actors to perform ViewState code injection attacks, is now being exploited, according ...
Nextgov

CISA officials commit to supporting top vulnerability cataloging program

Organizations around the world rely on the Common Vulnerabilities and Exposures Program, whose contract with CISA almost expired in April. It serves as the worldwide, de facto standard for ...
SiliconANGLE

CISA urges immediate patching of exploited Windows SMB client vulnerability

The U.S. Cybersecurity and Infrastructure Agency has issued a warning relating to an actively targeted Microsoft Windows vulnerability that can be found in unpatched versions of Windows 10, Windows 11 ...
The Hacker News

CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution

CISA adds an actively exploited Digiever DS-2105 Pro NVR vulnerability to KEV, warning of botnet attacks and urging ...
AFCEA

CISA’s Coordinated Vulnerability Disclosure Process

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) runs a program that coordinates cybersecurity vulnerabilities in products and services. This includes new vulnerabilities in industrial ...