How CISA’s list of ‘must-patch’ vulnerabilities has expanded both in size, and who’s using it
While CISA says the catalog is catching on, some think it needs improvement.
Advertisement
Binding Operational Directive
CISA tells agencies to fix hundreds of software flaws, prep for future vulnerabilities
CISA wants agencies to tackle nearly 300 flaws in all, ranging from within two weeks to six months.
CISA orders agencies to set up vulnerability disclosure programs
It’s the latest sign that federal officials are warming to white-hat hackers from various walks of life.
DHS issues draft order to require vulnerability disclosure policies at civilian agencies
The Department of Homeland Security’s cybersecurity division is trying something new in appealing for public input before issuing an order.
DHS is mulling an order that would force agencies to set up vulnerability disclosure policies
A directive under consideration at CISA would order agencies to set up disclosure programs to work with outside security researchers.
New DHS order pushes agencies to quickly patch vulnerabilities
Hackers are getting quicker at exploiting flaws. DHS wants agencies to faster than the hackers.
Advertisement
Kaspersky Lab takes U.S. government to court over federal software ban
In a letter posted on the company's website, CEO Eugene Kaspersky claims DHS did not give his company due process.