Backstage news crew

News & Events

Read and watch the latest news, multimedia, and other important communications from CISA. View a calendar of upcoming events CISA hosts and participates in.

Featured Articles

View More Articles

CISA and Partners Release Asset Inventory Guidance to Strengthen Operational Technology Security

AUG 13, 2025 | PRESS RELEASE

CISA issues emergency directive requiring federal agencies to update systems to prevent Microsoft Exchange vulnerability

AUG 07, 2025 | PRESS RELEASE

CISA Issues Alert on Vulnerability affecting Microsoft Exchange

AUG 06, 2025 | PRESS RELEASE

DHS Launches Over $100 Million in Funding to Strengthen Communities’ Cyber Defenses

AUG 01, 2025 | PRESS RELEASE
View More Articles

Alerts & Directives

View More Advisories

ED 25-02: Mitigate Microsoft Exchange Vulnerability

CISA issued Emergency Directive (ED) 25-02 in response to a newly disclosed vulnerability affecting Microsoft Exchange hybrid-joined configurations.

ED 24-02: Mitigating the Significant Risk from Nation-State Compromise of Microsoft Corporate Email System

This Emergency Directive requires agencies to analyze the content of exfiltrated emails, reset compromised credentials, and take additional steps to ensure authentication tools for privileged Microsoft Azure accounts are secure.

BOD 25-01: Implementing Secure Practices for Cloud Services

This Directive complements existing federal resources for cloud security, including the Federal Risk and Authorization Management Program (FedRAMP), relevant NIST guidance, and the CISA Trusted Internet Connections (TIC) 3.0 Cloud Use Case.

BOD 23-02: Mitigating the Risk from Internet-Exposed Management Interfaces

This Directive requires agencies to take steps to reduce the attack surface created by insecure or misconfigured management interfaces across certain classes of devices.
View More Advisories

Upcoming Events

View All Events
SEP
23

ISC Facility Security Committee Seminar - Regions 8, 9 & 10

SEMINAR | VIRTUAL/ONLINE
This seminar for Regions 8, 9, and 10 will walk through FSC procedures and responsibilities, discuss key updates to the Risk Management Process Standard and provide your committee with the resources to have an effective and compliant FSC.
OCT
28

Federal Security Certification Training - Pittsburgh, PA

OTHER | IN-PERSON
Register for the ISC FSCT on October 28! This in-Person training is a half-day, instructor-led course covering the ISC, ISC Risk Management Process Standard, and the roles and responsibilities of Facility Security Committees. The course is offered at no cost.
OCT
29

Federal Security Certification Training - Albuquerque, NM

OTHER | IN-PERSON
Register for the ISC FSCT on October 29! This in-Person training is a half-day, instructor-led course covering the ISC, ISC Risk Management Process Standard, and the roles and responsibilities of Facility Security Committees. The course is offered at no cost.
View All Events

Media Inquiries

Please direct media inquiries to CISAMedia@cisa.dhs.gov or call 703-235-2010.