cyber incident

Cost of a Cyber Incident: Systematic Review and Cross-Validation

Cost of a Cyber Incident: Systematic Review and Cross-Validation.  In order to support stakeholders with understanding the impacts, costs, and losses from cyber incidents, CISA has cleared for release this October 2020 study.  The objectives of the study are to enable cyber risk analysis, understand the benefits of cybersecurity investments, and inform cybersecurity resource allocation decisions.  To achieve these objectives CISA’s study reviews cost and loss estimates for a wide range of incidents.  While the data analyzed in CISA’s Cost Study can inform the order of magnitude of the potential costs associated with more recent events such as the SolarWinds compromise and Microsoft Exchange server exploit, the impacts associated with these events are not included in the study.

Systemic Cyber Risk Reduction

Working with government and industry partners, CISA’s National Risk Management Center is adding analytic rigor to the ability for organizations to quantify cyber risk impact for cybersecurity measures they have in place in order to develop actionable metrics, and use this information to reduce shared risk to the Nation’s security and economic security.

Supply Chain Compromise

The FBI, CISA, and ODNI have become aware of a significant and ongoing cybersecurity campaign. Pursuant to Presidential Policy Directive (PPD) 41, the FBI, CISA, and ODNI have formed a Cyber Unified Coordination Group (UCG) to coordinate a whole-of-government response to this significant cyber incident.


CISA’s Mis-, Dis-, Malinformation (MDM) team is charged with building national resilience to mis-, dis-, and malinformation and foreign influence activities. Through these efforts, CISA helps the American people understand the scope and scale of MDM activities targeting elections and critical infrastructure, and enables them to take actions to mitigate associated risks. The MDM team was formerly known as the Countering Foreign Influence Task Force (CFITF).

Cybersecurity Officials from U.S., U.K., Australia, Canada and New Zealand Release Best Practices for Incident Response

Today, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), Australian Cyber Security Centre (ACSC), New Zealand’s National Cyber Security Centre (NCSC NZ) and Computer Emergency Response Team NZ (CERT NZ), Canada’s Communications Security Establishment, and the United Kingdom’s National Cyber Security Centre (NCSC UK), are releasing a Joint Cybersecurity Advisory: Technical Approaches to Uncovering and Remediating Malicious Activity.
Last Published Date: February 5, 2021

Protect2020 Cyber Incident Guide

The Planning Guide and templates are voluntary tools to help jurisdictions effectively recognize and respond to potential cyber incidents. Election offices can use this information as a basic cyber incident response plan or integrate it into a broader plan based on their specific needs. The templates, which can be tailored to fit the exact needs of each jurisdiction, include: