See every side of every news story
Get Started
SubscribeLogin
Israel-Hamas Conflict
Donald Trump
Artificial Intelligence
Social Media
Natural Disasters
Inflation
Infrastructure
Facebook
Swimming
Republican Party
Coronavirus
Property
European Union
cisa.gov image

News from cisa.gov

We’ve assigned a rating of Unknown factuality to cisa.gov. You can read more about how we’ve determined cisa.gov’s credibility and reliability as a news source here: https://ground.news/rating-system.

Information about cisa.gov

Where is cisa.gov located?cisa.gov's Website

Media Bias Ratings

Do you diasgree?
Edit bias
Learn more about Media Bias Ratings.

Factuality

Learn more about  Factuality Ratings

Reveal Factuality Ratings by upgrading to a Premium account.

Tap Upgrade to explore subscription options to meet all your reading needs.

Ownership

Learn more about  Ownership categories

Reveal Ownership Data by upgrading to a Vantage account.

Tap Upgrade to explore subscription options to meet all your reading needs.

Top cisa.gov News

CitrixBleed 2 Beckons Sweeping Alarm as Exploits Spread Across the Globe
Hacking

CitrixBleed 2 Beckons Sweeping Alarm as Exploits Spread Across the Globe

100% Center coverage: 1 sources
Authorities and researchers are intensifying warnings about active exploitation and pervasive scanning of a critical vulnerability affecting multiple versions of Citrix NetScaler products. There is now widespread agreement among security professionals that the critical vulnerability, CVE-2025-5777, which Citrix disclosed June 17, is serious and harkens back to a 2023 defect in the same products: “CitrixBleed,” or CVE-2023-4966. Naturally, threat…See the Story
What Is Cloud Infrastructure Entitlement Management (CIEM)?
United States · United States

What Is Cloud Infrastructure Entitlement Management (CIEM)?

Cloud infrastructure entitlement management (CIEM) is a modern cloud security discipline for managing identities and privileges in cloud environments. As organizations shifted from on-premises computing and storage systems to cloud-based infrastructure accessed via the internet, IT and security teams established… Read more → The post What is cloud infrastructure entitlement management (CIEM)? appeared first on IT Security News.See the Story
CISA ICS security advisories (AV25–420)
Canada · Canada

CISA ICS security advisories (AV25–420)

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Enroll Now and Save 10%: Coupon Code MWNEWS10 Note: Affiliate link – your e…See the Story

LITEON IC48A and IC80A EV Chargers

LITEON IC48A and IC80A EV Chargers afuller Jul 15, 2025 Release DateJuly 15, 2025 DescriptionView CSAF1. EXECUTIVE SUMMARYCVSS v4 8.7ATTENTION: Exploitable remotely/low attack complexityVendor: LITEONEquipment: IC48A and IC80AVulnerability: Plaintext Storage of a Password2. RISK EVALUATIONSuccessful exploitation of this vulnerability could allow an attacker to access sensitive information when accessing the Liteon EV chargers.3. TECHNICAL DETA…Taiwan · TaiwanRead Article

Hitachi Energy Asset Suite

Hitachi Energy Asset Suite afuller Jul 15, 2025 Release DateJuly 15, 2025 DescriptionView CSAF1. EXECUTIVE SUMMARYCVSS v4 9.1ATTENTION: Exploitable remotely/low attack complexityVendor: Hitachi EnergyEquipment: Energy Asset SuiteVulnerabilities: Incomplete List of Disallowed Inputs, Plaintext Storage of a Password, Out-of-bounds Write, Release of Invalid Pointer or Reference2. RISK EVALUATIONSuccessful exploitation of these vulnerabilities cou…Switzerland · SwitzerlandRead Article

CISA Issues 13 New Advisories on Industrial Control System Vulnerabilities and Exploits

The Cybersecurity and Infrastructure Security Agency (CISA) released thirteen new Industrial Control Systems (ICS) advisories, spotlighting a range of security vulnerabilities and potential exploits affecting critical infrastructure components. These advisories are a vital resource for organizations relying on ICS technologies, offering detailed technical insights into current threats and actionable mitigations to safeguard operations. With indu…Infrastructure · United StatesSee the Story

End-of-Train and Head-of-Train Remote Linking Protocol

End-of-Train and Head-of-Train Remote Linking Protocol afuller Jul 10, 2025 Release DateJuly 10, 2025 DescriptionView CSAF1. EXECUTIVE SUMMARYCVSS v4 7.2ATTENTION: Low attack complexityStandard: End-of-Train and Head-of-Train remote linking protocolEquipment: End-of-Train and Head-of-Train devicesVulnerability: Weak Authentication2. RISK EVALUATIONSuccessful exploitation of this vulnerability could allow an attacker to send their own brake con…United States · United StatesRead Article

Delta Electronics DTM Soft

Delta Electronics DTM Soft afuller Jul 10, 2025 Release DateJuly 10, 2025 DescriptionView CSAF1. EXECUTIVE SUMMARYCVSS v4 8.4ATTENTION: Low attack complexityVendor: Delta ElectronicsEquipment: DTM SoftVulnerability: Deserialization of Untrusted Data2. RISK EVALUATIONSuccessful exploitation of this vulnerability could allow an attacker to encrypt files referencing the application in order to extract information.3. TECHNICAL DETAILS3.1 AFFECTED …Taiwan · TaiwanRead Article

Siemens TIA Project-Server and TIA Portal

Siemens TIA Project-Server and TIA Portal afuller Jul 10, 2025 Release DateJuly 10, 2025 DescriptionAs of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).View CSAF1. EXECUTIVE SUMMARYCVSS…CISA · GermanyRead Article

Siemens SIMATIC CN 4100

Siemens SIMATIC CN 4100 afuller Jul 10, 2025 Release DateJuly 10, 2025 DescriptionAs of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).View CSAF1. EXECUTIVE SUMMARYCVSS v4 7.1ATTENTION: …CISA · GermanyRead Article

Critical CitrixBleed 2 vulnerability has been under active exploit for weeks

100% Center coverage: 2 sources
A critical vulnerability allowing hackers to bypass multifactor authentication in network management devices made by Citrix has been actively exploited for more than a month, researchers said. The finding is at odds with advisories from the vendor saying there is no evidence of in-the-wild exploitation. Tracked as CVE-2025-5777, the vulnerability shares similarities with CVE-2023-4966, a security flaw nicknamed CitrixBleed, which led to the comp…CISA · United StatesSee the Story

Breaking News Topics Related to cisa.gov

CISA icon

CISA

France icon

France

United States icon

United States

Germany icon

Germany

News
For You
SearchBlindspotLocal