Tags Binding Operational Directive

How CISA's list of 'must-patch' vulnerabilities has expanded both in size, and who's using it

by Tim Starks

While CISA says the catalog is catching on, some think it needs improvement.

CISA tells agencies to fix hundreds of software flaws, prep for future vulnerabilities

by Tim Starks

CISA wants agencies to tackle nearly 300 flaws in all, ranging from within two weeks to six months.

CISA orders agencies to set up vulnerability disclosure programs

by Sean Lyngaas

It’s the latest sign that federal officials are warming to white-hat hackers from various walks of life.

DHS issues draft order to require vulnerability disclosure policies at civilian agencies

by Sean Lyngaas

The Department of Homeland Security’s cybersecurity division is trying something new in appealing for public input before issuing an order.

DHS is mulling an order that would force agencies to set up vulnerability disclosure policies

by Sean Lyngaas

A directive under consideration at CISA would order agencies to set up disclosure programs to work with outside security researchers.

New DHS order pushes agencies to quickly patch vulnerabilities

by Sean Lyngaas

Hackers are getting quicker at exploiting flaws. DHS wants agencies to faster than the hackers.