ShieldsUp

Prepare for, respond to, and mitigate the impact of cyberattacks.

learn more
Threat Actors Exploit Adobe Coldfusion CVE-2023-26360 For Initial Access to Government Servers

READ NOW! New Cybersecurity Advisory

This vulnerability presents as an improper access control issue impacting Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) and provides network defenders with TTPs, IOCs, and ways to detect and protect.

READ NOW! New Cybersecurity Advisory
Blog: Cybersecurity Performance Goals: Assessing How CPGs Help Organizations Reduce Cyber Risk

Cybersecurity Performance Goals: Assessing How CPGs Help Organizations Reduce Cyber Risk

Recently, CISA identified positive trends on two CPGs across nearly 3,500 organizations enrolled in our Vulnerability Scanning service. Read about the findings in this blog. 

Read the Blog
Joint Cybersecurity Advisory: IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, including U.S. Water and Wastewater Systems Facilities

IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities

CISA, FBI, NSA, EPA, and the INCD released a joint Cybersecurity Advisory (CSA) to highlight continued malicious cyber activity against operational technology devices by Iranian Government Islamic Revolutionary Guard Corps affiliated APT cyber actors

Read This Advisory Now
Secure by Design Alert: How Software Manufacturers Can Shield Web Management Interfaces From Malicious Web Activity

CISA Announces Secure by Design Alert Series: How Vendor Decisions Can Reduce Harm at a Global Scale

CISA leads the national effort to understandmanage, and reduce risk to our cyber and physical infrastructure. We continuously publish alerts and advisories to help defenders prioritize their work based on current threats and software vulnerabilities

Learn More
We Want to Ensure the Safe and Reliable Development and Use of AI

Guidelines for Secure AI System Development

CISA, NCSC and 21 international partners announced the #AISecurityGuidelines – a landmark piece of guidance putting cyber security at the core of the AI systems of the future.

Read More about AI Security Guidelines
Water and Wastewater Cybersecurity

Water and Wastewater Cybersecurity

Information and resources from CISA and EPA to help boost cybersecurity in water utilities. 

Read more on Water Cybersecurity

News Updates

View More News

Latest Operational Information

View All Alerts & Advisories Subscribe to Updates

How can we help?

All Audiences
Main St, street sign

Find Help Locally

Contact your Region

Assist Visits

Protected Critical Infrastructure Information

IT professional working at computers

Industry

Information Sharing: A Vital Resource

PCII Program modernized

Joint Cyber Defense Collaborative expands

A small business worker making a transaction with a customer

Small and Medium Businesses

Cyber guidance for small businesses

Supplementing passwords

Doing business with CISA

Teenager boy and classmates in high school computer class

Educational Institutions

School Safety

Cybersecurity for K-12

K-12 School Security Product Suite

Protecting Our Future: Partnering to Safeguard K-12 Organizations from Cybersecurity Threats

All Audiences

StopRansomware.gov is the U.S. Government's official one-stop location for resources to tackle ransomware more effectively.

Learn More

The Secure Our World program offers resources and advice to stay safe online. Each of us has a part to play; it’s easy to do and takes less time than you think!

Learn More

SAFECOM works to improve emergency communications interoperability across local, regional, tribal, state, territorial, international borders, and with federal government entities. 

Learn More

Additional CISA Resources

CISA Services Catalog

A single resource that provides you with access to information on services across CISA’s mission areas.

CISA Publications

Free cybersecurity tools and resources to help organizations advance their security capabilities.

CISA Regions

CISA provides regional cyber and physical services to support security and resilience across the United States.

CISA Events

CISA hosts and participates in events throughout the year to engage stakeholders, seek research partners, and communicate with the public to help protect the homeland.