Cybersecurity and Infrastructure Security Agency (CISA)

VA investigates breach after federal contractor publishes source code 


Six foreign IP addresses cloned the code within minutes of it becoming public on GitHub, according to sources.

Senators propose open source software risk framework in new bill


The legislation would require CISA to develop a new cybersecurity framework for agencies and critical infrastructure owners and operators.

ONCD senior leader says FBI and operational cyber agencies have improved incident info sharing


Kemba Walden says governmentwide agencies are now being looped in faster when cyber breach details are reported.

CISA to develop ‘self-attestation’ cybersecurity standards for federal software vendors 


The agency will create a standardized form for U.S. departments to collect proof that vendors comply with NIST standards.

CISA seeks public comment on upcoming major cyber incident reporting regulations


Industry will have until Nov. 14 to comment on the Cyber Incident Reporting for Critical Infrastructure Act of 2022.

CBP promotes Scott Davis to chief information security officer


Davis took up the new appointment in August after previously serving as deputy CISO.