ShieldsUp

Prepare for, respond to, and mitigate the impact of cyberattacks.

Threat Actors Exploit Adobe Coldfusion CVE-2023-26360 For Initial Access to Government Servers

READ NOW! New Cybersecurity Advisory

This vulnerability presents as an improper access control issue impacting Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) and provides network defenders with TTPs, IOCs, and ways to detect and protect.

Blog: Cybersecurity Performance Goals: Assessing How CPGs Help Organizations Reduce Cyber Risk

Cybersecurity Performance Goals: Assessing How CPGs Help Organizations Reduce Cyber Risk

Recently, CISA identified positive trends on two CPGs across nearly 3,500 organizations enrolled in our Vulnerability Scanning service. Read about the findings in this blog. 

Joint Cybersecurity Advisory: IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, including U.S. Water and Wastewater Systems Facilities

IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities

CISA, FBI, NSA, EPA, and the INCD released a joint Cybersecurity Advisory (CSA) to highlight continued malicious cyber activity against operational technology devices by Iranian Government Islamic Revolutionary Guard Corps affiliated APT cyber actors

Secure by Design Alert: How Software Manufacturers Can Shield Web Management Interfaces From Malicious Web Activity

CISA Announces Secure by Design Alert Series: How Vendor Decisions Can Reduce Harm at a Global Scale

CISA leads the national effort to understandmanage, and reduce risk to our cyber and physical infrastructure. We continuously publish alerts and advisories to help defenders prioritize their work based on current threats and software vulnerabilities

We Want to Ensure the Safe and Reliable Development and Use of AI

Guidelines for Secure AI System Development

CISA, NCSC and 21 international partners announced the #AISecurityGuidelines – a landmark piece of guidance putting cyber security at the core of the AI systems of the future.

President's Cup Cybersecurity Competition

President's Cup

It’s the 5th Annual President’s Cup. Registration begins January 3. Learn more here and get ready to register soon.

 

StopRansomware.gov is the U.S. Government's official one-stop location for resources to tackle ransomware more effectively.

The Secure Our World program offers resources and advice to stay safe online. Each of us has a part to play; it’s easy to do and takes less time than you think!

SAFECOM works to improve emergency communications interoperability across local, regional, tribal, state, territorial, international borders, and with federal government entities. 

Additional CISA Resources

CISA Services Catalog

A single resource that provides you with access to information on services across CISA’s mission areas.

CISA Publications

Free cybersecurity tools and resources to help organizations advance their security capabilities.

CISA Regions

CISA provides regional cyber and physical services to support security and resilience across the United States.

CISA Events

CISA hosts and participates in events throughout the year to engage stakeholders, seek research partners, and communicate with the public to help protect the homeland.