Congrats UConn Men's Basketball! While fans enjoyed an exciting NCAA Men's Final Four championship game at State Farm Stadium, our Region 9 team, along with partners, provided on-site incident management & security support, and monitored potential threats to the venue & nearby critical infrastructure.

Happy #EmergencyCommsMonth ! This April we are prioritizing the people who support the systems on which we rely and highlighting the role of emergency communications as a vital function. #BeResilient cisa.gov/emergency-comm…

Business organizations: Join our next business & industry call on April 30. We're working with AT&T, @Argonne, & Cybersecurity and Infrastructure Security Agency experts to showcase resiliency tools that can be used during disaster emergencies.

To register, visit: bit.ly/AprilBICall or scan the QR code below.

Happy 10th Birthday to WiCyS! Over the past decade,
Women in CyberSecurity (WiCyS) has fostered a vibrant community that connects and empowers women in cyber, strengthening our cyber workforce and our national cyber defense. To celebrate, I called in a few friends!

🚩Palo Alto Networks has released workaround guidance for a command injection vulnerability (CVE-2024-3400) affecting PAN-OS versions 10.2, 11.0 & 11.1. Apply workarounds asap 👉 cisa.gov/news-events/al…

🛡️ Palo Alto Networks PAN-OS users: We added #CVE -2024-3400, a command injection vulnerability in GlobalProtect Gateway, to our Known Exploited Vulnerabilities Catalog. Apply mitigations to protect your org from cyberattacks. go.dhs.gov/Z3Q #Cybersecurity #InfoSec

🛡️D-Link users: We added #CVE -2024-3272 & CVE-2024-3273 to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec

CISA advisors Jack Cable and æva black describe in our latest blog how we are responding to the XZ Utils compromise and how every tech manufacturer should take a #SecureByDesign approach to securing open source software: go.dhs.gov/JHf

Don’t miss the next #GlobalChemCongress webinar on April 29 where several female leaders in #chemicalsecurity will speak on their own unique challenges and their efforts to foster a more inclusive and diverse workforce. ⚖️🧪🚨 Contact [email protected] for information.

Russian nation-state actors targeted Microsoft corporate email accounts & correspondence w/federal civilian agencies (more below in ED 24-02). Of note, password spraying was used to compromise systems—why strong passwords & MFA are critical. More at cisa.gov/SecureOurWorld

Great to spend time in Nashville w/the fabulous Women in CyberSecurity (WiCyS) team as part of their 10th Anniversary Celebration. I’m so inspired by WiCyS’ mission to recruit, retrain & advance women in cybersecurity. Congrats to Ambareen & Lynn Dohm | WiCyS ♥️—Cybersecurity and Infrastructure Security Agency is so proud to partner with you! 50x30!

🚨Event Alert🚨

Register today for 'The Secure by Design Imperative' on April 25.

This virtual panel will include folks from Cybersecurity and Infrastructure Security Agency, as well as Dan Lorenc of Chainguard ⛓️ about secure-by-design practices & the path ahead for industry.

atlanticcouncil.org/event/the-secu…

The Interagency Security Committee (ISC) released its 2023 Annual Review. This publication provides an overview of the ISC’s activities and accomplishments over the course of 2023, as well as plans for 2024. go.dhs.gov/Jrd

We publicly issued Emergency Directive (ED) 24-02 which requires emergency action by fed civilian agencies after Russian state-sponsored actors compromised Microsoft's corporate email system: go.dhs.gov/JrK We encourage all orgs to take steps to mitigate their risk.

Mona Harrington, our Assistant Director for the National Risk Management Center (NRMC), joined USCYBERCOM Cybersecurity Alert and private sector leaders to share insights on partnering to protect critical infrastructure in the digital age. Learn more about the NRMC: cisa.gov/nrmc

Time is running out to apply for our Public Affairs Specialist position in Arlington⏰ This is a great opportunity to join our team and support the agency's media engagement efforts! usajobs.gov/job/783597800

Supervisory Cybersecurity Advisor, May Acosta spoke at the Nevada Public Sector Cybersecurity Summit in Reno! Along with our partners, they highlighted the importance of cybersecurity, grant application processes, & other services.

“As part of the National Risk Management Center, I work to understand and mitigate the risk space weather phenomena poses to our critical infrastructure.”
- Megan Spear, Management and Program Analyst #WorkforceWednesday

Malware Next-Gen Analysis allows any org to submit malware samples and other suspicious artifacts for analysis. It enables us to more effectively support our partners by automating analysis of newly identified malware and enhancing cyber defense efforts. go.dhs.gov/JrN

Kevin is always on the go and needs his devices to work for him. 💻 To keep them in shape and up to date, he uses FOUR EASY TIPS from #SecureOurWorld 📶🌎 To keep YOUR DEVICES SAFE go to cisa.gov/SecureOurWorld