Official websites use .gov
Secure .gov websites use HTTPS
Aug. 3, 2023
CISA, NSA, FBI and International Partners Issue Advisory on the Top Routinely Exploited Vulnerabilities in 2022
The “2022 Top Routinely Exploited Vulnerabilities” CSA provides details on the top Common Vulnerabilities and Exposures (CVEs) routinely exploited by malicious cyber actors who continue targeting unpatched systems and applications – all known vulnerabilities from 2017 to 2022 that have not been mitigated.
June 6, 2023
NSA and Co-Authors Recommend Best Practices to Secure Remote Access Software
Legitimate remote access software is being used by cyber actors to access victims’ systems, blend in with regular network activities, and evade detection.
June 1, 2023
U.S., ROK Agencies Alert: DPRK Cyber Actors Impersonating Targets to Collect Intelligence
The National Security Agency (NSA) is partnering with several organizations to highlight the Democratic People’s Republic of Korea’s (DPRK) use of social engineering and malware to target think tanks, academia, and news media sectors.
April 18, 2023
NCSC-UK, NSA, and Partners Advise about APT28 Exploitation of Cisco Routers
The National Security Agency (NSA) has partnered with the UK’s National Cyber Security Centre (NCSC), the Federal Bureau of Investigation (FBI), and the Cybersecurity and Infrastructure Security Agency (CISA) to publish a joint Cybersecurity Advisory (CSA) report on the tactics, techniques, and procedures (TTPs) associated with APT28’s exploitation of Cisco routers.
Feb. 9, 2023
U.S., South Korean Agencies Partner to #StopRansomware Threat from DPRK
FORT MEADE, Md. — The National Security Agency (NSA) partnered with U.S. and South Korean government agencies to release a joint Cybersecurity Advisory today about the Democratic People's Republic of Korea (DPRK) ransomware threat.
Jan. 25, 2023
NSA, CISA, and MS-ISAC Release Guidance for Securing Remote Monitoring and Management Software
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) released the “Protecting Against Malicious Use of Remote Monitoring and Management Software” Cybersecurity Advisory (CSA) today to help network defenders protect against the malicious use of legitimate remote monitoring and management (RMM) software.
April 27, 2022
CISA, FBI, NSA, and International Partners Warn Organizations of Top Routinely Exploited Cybersecurity Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA), along with the National Security Agency (NSA), Federal Bureau of Investigation (FBI), Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), New Zealand National Cyber Security Centre (NZ NCSC), and the United Kingdom’s National Cyber Security Centre (NCSC-UK) issued a joint Cybersecurity Advisory on the top 15 common vulnerabilities and exposures (CVEs) routinely exploited by malicious cyber actors in 2021, as well as other CVEs frequently exploited.
Oct. 1, 2015
In Discussion with Curt Dukes (IAD) - Overview of NSA's Cyber Security Mission
Discussions with Curt Dukes, IAD, about NSA's role in Cyber Security, and how NSA/IAD protect national security networks.