NIST narrows its National Vulnerability Database priorities to CVEs in CISA's known exploited catalog, to deal with a backlog after its 2024 funding lapse
NIST narrows its National Vulnerability Database priorities to CVEs in CISA's known exploited catalog, to deal with a backlog after its 2024 funding lapse
The National Vulnerability Database will now only analyze vulnerabilities in critical software, systems used in the federal government and those under active exploitation.
The FBI, the NSA, and other US agencies warn that Iran-linked hackers targeted industrial control devices used in critical US water and energy infrastructure
As Trump threatens Iranian infrastructure, the US government warns that Iran has carried out its own digital attacks against US critical infrastructure.
A group of US agencies including the FBI and the NSA warns that Iran-linked hackers have targeted industrial control devices used in US critical infrastructure
As Trump threatens Iranian infrastructure, the US government warns that Iran has carried out its own digital attacks against US critical infrastructure.
The US FCC is banning imports of new foreign-made consumer routers over security concerns; China is estimated to control 60%+ of the US market for home routers
The U.S. Federal Communications Commission said on Monday it was banning the import of all new foreign-made consumer routers …
The US FCC is banning imports of new foreign-made consumer routers over security concerns; China is estimated to control 60%+ of the US market for home routers
The U.S. Federal Communications Commission said on Monday it was banning the import of all new foreign-made consumer routers …
The Trump administration debuts its cyber strategy, outlining priorities including promoting offense operations, securing AI tech, and streamlining regulations
The Trump administration debuts its cyber strategy, outlining priorities including promoting offense operations, securing AI tech, and streamlining regulations
The Trump administration debuts its cyber strategy, outlining priorities including promoting offense operations, securing AI tech, and streamlining regulations
The administration also released an executive order on cybercrime and fraud. — Learn more.
The Trump administration debuts its cyber strategy, outlining priorities including promoting offense operations, securing AI tech, and streamlining regulations
The administration also released an executive order on cybercrime and fraud. — Learn more.
CISA's interim director Madhu Gottumukkala is reassigned as DHS' director of strategic implementation; executive assistant director Nick Andersen will take over
The nominee to serve as CISA director has not yet received a hearing. — The Department of Homeland Security (DHS) …
Cisco warns of a critical SD-WAN bug that was actively exploited in zero-day attacks since 2023; CISA and its international partners issue emergency directives
Cisco is warning that a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN, tracked as CVE-2026-20127 …
President Trump renominates Sean Plankey to be the next director of CISA, which hasn't had a full-time chief since Trump's return to office on January 20, 2025
Sen. Rick Scott (R-Fla.) scotched Plankey's confirmation in 2025, reportedly due to a Coast Guard ship-building contract.
Sources: DHS is investigating whether six staffers misled CISA's acting director into taking a polygraph that he failed, compounding instability at the agency
“At least six career staffers at the Cybersecurity and Infrastructure Security Agency were suspended with pay this summer after organizing a polygraph test that the agency's acting...
CISA issues an emergency directive ordering US federal agencies to secure their Cisco firewall devices against two flaws exploited in zero-day attacks
CISA has issued a new emergency directive ordering U.S. federal agencies to secure their Cisco firewall devices against two flaws that have been exploited in zero-day attacks.
Anthropic's Threat Intelligence report for August says Claude was weaponized for sophisticated cybercrimes, including a “vibe-hacking” data extortion scheme
and It Could Happen Again Vyom Ramani / Digit : Vibe-hacking based AI attack turned Claude against its safeguard: Here's how Charlesarthur / The Overspill : Start Up No.2503: Anthr...
OpenAI and Anthropic publish findings from joint safety tests of each other's models, aimed at surfacing blind spots in their internal evaluations
OpenAI and Anthropic, two of the world's leading AI labs, briefly opened up their closely guarded AI models to allow for joint safety testing …
Sources and docs: a Russia-based Yandex employee maintains open-source tool fast-glob, embedded in 30 US DOD software packages and downloaded 70M times per week
The package is listed inside Platform One's Iron Bank, a vetted Defense Department software repository, people familiar say.
Anthropic's Threat Intelligence report for August says Claude was weaponized for sophisticated cybercrimes, including a “vibe-hacking” data extortion scheme
Anthropic's new report shows how bad actors are misusing Claude —and, likely, other AI agents. … “Agentic AI systems are being weaponized.”
An internal policy doc shows Meta permitted its chatbots to engage in provocative behavior; Meta removed some examples, including romantic roleplay with kids
An internal Meta policy document, seen by Reuters, reveals the social-media giant's rules for chatbots, which have permitted provocative behavior …