The Cybersecurity Infrastructure Security Agency is pledging to go "left-of-boom" and surveil artificial intelligence software development practices in a new alert series, which offers lessons to ...

The Cybersecurity and Infrastructure Security Agency is looking for feedback on its “secure by design” white paper, which pushes software manufacturers to follow more stringent security principles in ...

Makers of software used by the federal government will now be required to affirm that their products are manufactured with secure development practices in mind, filling out a form released Monday by ...

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. The future of the federal government’s ...

Software developers who want to sell to the federal government better ensure they are meeting minimum cybersecurity standards, or else, a top federal official said Thursday at the Potomac Officers ...

The Ivanti Integrity Checker Tool is not sufficient to detect compromise due to the ability of threat actors to deceive it, and A cyber threat actor may be able to gain root-level persistence despite ...

CMD+CTRL Security, a leader in software security training, reinforced its commitment to helping organizations integrate security principles across the software development lifecycle by signing the ...

The Cybersecurity and Infrastructure Security Agency (CISA) yesterday issued Binding Operational Directive (BOD) 25-01, Implementing Secure Practices for Cloud Services to safeguard federal ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued an alert on a vulnerability in Pulse Secure virtual private network (VPN) products -- yet again. The issue concerns ...

The Cybersecurity and Infrastructure Security Agency wants to beef up federal civilian email security with CISA-provisioned threat hunting and incident response efforts, according to a request for ...