NSA News & Highlights

NSA SPOTLIGHT

April 15, 2025

Georgia Tech Wins NSA's Codebreaker Challenge for Fourth Consecutive Year

FORT MEADE, Md. – For the fourth consecutive year, the Georgia Institute of Technology (Georgia Tech) took first place in the National Security Agency’s annual Codebreaker Challenge (CBC).

NSA and partners Issue Guidance on Fast Flux as a National Security Threat

Joint Publications Focus on Mitigation Strategies for Edge Devices

NSA and Others Publish Guidance for Secure OT Product Selection

Tag: cybersecurity

Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Secure by Design Software. Cybersecurity Information Sheet.

Oct. 17, 2023

NSA and Partners Issue Additional Guidance for Secure By Design Software

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), and international partners released an updated Cybersecurity Information Sheet (CSI) to provide additional guidance for technology manufacturers to ensure their products are secure by design and default.

Improving Security of Open Source Software in Operational Technology and Industrial Control Systems. Cybersecurity Information Sheet.

Oct. 10, 2023

NSA and U.S. Agencies Issue Best Practices for Open Source Software in Operational Technology Environments

The National Security Agency (NSA) is joining U.S. federal partners to release cybersecurity guidance to promote understanding of open source software (OSS) implementation and provide best practices to secure operational technology (OT) and industrial control systems (ICS) environments.

NSA and CISA Red and Blue Teams Share Top Ten
Cybersecurity Misconfigurations. Cybersecurity Advisory.

Oct. 5, 2023

NSA and CISA Advise on Top Ten Cybersecurity Misconfigurations

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing a joint Cybersecurity Advisory (CSA) highlighting the top ten most common cybersecurity misconfigurations found in large organizations’ networks. The CSA details tactics, techniques, and procedures (TTPs) that cyber actors could use to compromise these networks, as well as mitigations to defend against this threat.

Procurement and Acceptance Testing Guide for Servers, Laptops, and Desktop Computers. Cybersecurity Information Sheet

Sept. 28, 2023

NSA Releases Guidance on Acceptance Testing for Supply Chain Risk Management

The National Security Agency (NSA) has released the Cybersecurity Information Sheet (CSI) “Procurement and Acceptance Testing Guide for Servers, Laptops, and Desktop Computers” encouraging U.S. Government departments and agencies operating National Security Systems (NSS) to implement a robust supply chain risk management strategy.

People's Republic of China-Linked Cyber Actors Hide in Router Firmware. Cybersecurity Advisory.

Sept. 27, 2023

U.S. and Japanese Agencies Issue Advisory about China Linked Actors Hiding in Router Firmware

The National Security Agency (NSA), U.S. Federal Bureau of Investigation (FBI), U.S. Cybersecurity and Infrastructure Security Agency (CISA), Japan National Police Agency (NPA), and Japan National Center of Incident Readiness and Strategy for Cybersecurity (NISC) are releasing the joint Cybersecurity Advisory (CSA) “People’s Republic of China-Linked Cyber Actors Hide in Router Firmware” about the activities of BlackTech cyber actors.

GEN Nakasone speaks at the 2023 Billington Cybersecurity Summit.

Sept. 21, 2023

GEN Nakasone Offers Insight into Future of Cybersecurity and SIGINT

GEN Paul M. Nakasone, Commander of U.S. Cyber Command (USCYBERCOM), Director of NSA, and Chief of the Central Security Service (CSS), offered insight into what the future of cybersecurity and signals intelligence may look like during a conference in Washington earlier this month.

Contextualizing Deepfake Threats to Organizations. Cybersecurity Information Sheet.

Sept. 12, 2023

NSA, U.S. Federal Agencies Advise on Deepfake Threats

The National Security Agency (NSA) and U.S. federal agency partners have issued new advice on a synthetic media threat known as deepfakes. This emerging threat could present a cybersecurity challenge for National Security Systems (NSS), the Department of Defense (DoD), and DIB organizations.

Infamous Chisel Malware Analysis Report. Cybersecurity Advisory

Aug. 31, 2023

Government Agencies Report New Russian Malware Targets Ukrainian Military

U.S. federal agencies and international partners published a report warning of a new malware campaign from Russian military cyber actors known publicly as Sandworm.

CSI: Quantum-Readiness: Migration to Post-Quantum Cryptography

Aug. 21, 2023

Post-Quantum Cryptography: CISA, NIST, and NSA Recommend How to Prepare Now

The National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), and National Institute of Standards and Technology (NIST) warned that cyber actors could target our nation’s most sensitive information now and leverage future quantum computing technology to break traditional non-quantum-resistant cryptographic algorithms. This could be particularly devastating to sensitive information with long-term secrecy requirements.

CSA: 2022 Top Routinely Exploited Vulnerabilities

Aug. 3, 2023

CISA, NSA, FBI and International Partners Issue Advisory on the Top Routinely Exploited Vulnerabilities in 2022

The “2022 Top Routinely Exploited Vulnerabilities” CSA provides details on the top Common Vulnerabilities and Exposures (CVEs) routinely exploited by malicious cyber actors who continue targeting unpatched systems and applications – all known vulnerabilities from 2017 to 2022 that have not been mitigated.

NSA News & Highlights

NSA SPOTLIGHT

Georgia Tech Wins NSA's Codebreaker Challenge for Fourth Consecutive Year

NSA.GOV

CULTURE

HELPFUL LINKS

RESOURCES

RELATED LINKS