CISA stories - Page 1

CISA extends its contract with MITRE for another 11 months at USD $44 million, securing the critical CVE vulnerability programme amid funding concerns.

Quantum computing poses a significant threat to traditional encryption systems, urging Chief Information Security Officers to modernise their strategies for future resilience.

The rise of Fast Flux DNS has empowered cybercriminals to evade detection more effectively, presenting significant challenges for security agencies in Australia.

A recent Bitdefender report reveals February 2025 as the worst month for ransomware, with victims rising 126% to 962, including a notable impact on Australia.

Concerns grow over the Medusa ransomware group's threats to critical infrastructure, with attacks on over 300 victims reported amidst escalating cybersecurity risks.

The persistent threat of Medusa ransomware continues to alarm global organisations, as new advisories highlight the urgent need for enhanced cybersecurity measures.

Australia has climbed to fourth place globally for cyberattacks on critical infrastructure, as a report reveals a surge in diverse threats targeting various sectors.

The FBI and CISA have alerted organisations to increased cyber threats from China's Ghost ransomware group, affecting over 70 countries through outdated software.

Microsoft has patched 56 vulnerabilities in its February 2025 update, including two now exploited, marking a fifth month of no critical zero-days released.

Check Point Software's Infinity Platform has been recognised for its exceptional security efficacy, achieving a 99.9% malware block rate in Miercom's 2025 benchmark report.

ISACA has launched the Certified Cybersecurity Operations Analyst credential to meet the rising demand for skilled cybersecurity professionals with hands-on experience.

ISACA has launched the Certified Cybersecurity Operations Analyst (CCOA) credential, offering cybersecurity analysts practical experience against evolving threats.

CISA and the FDA have raised alarms about potential security flaws in Contec CMS8000 patient monitors, highlighting risks from a possible backdoor linked to China.

Semperis has achieved a remarkable milestone by surpassing USD $100 million in annual recurring revenue, reflecting its rapid growth in the UK cybersecurity market.

Zyxel Networks has won the 2024 Cyber Security Award for Innovation for its USG FLEX 200HP Security Firewall, enhancing global digital resilience.

In 2025, organisations must navigate the complexities of AI integration in software development, balancing innovation with security and skilled developer support.

Dragos has appointed Ekta Singh-Bushell as its inaugural Chief Operating Officer, aiming to boost operational efficiency and customer satisfaction.

Chris Hughes predicts that open source software adoption will grow in 2025, alongside sophisticated attacks and challenges in governance and security.

CISA has mandated federal agencies to implement SCuBA Secure Configuration Baselines for Microsoft 365 by mid-2025 to combat rising cyber threats.

This December, Microsoft addresses 70 vulnerabilities, including 16 critical remote code execution flaws, in its latest Patch Tuesday update.