June 30, 2025

NSA, CISA, FBI, and DC3 Warn Iranian Cyber Actors May Target Vulnerable U.S. Networks and Entities of Interest

FORT MEADE, Md. - The National Security Agency, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigations (FBI), and the Department of Defense Cyber Crime Center (DC3) have released the joint Cybersecurity Information Sheet (CSI), “Iranian Cyber Actors May Target Vulnerable U.S. Networks and Entities of Interest.”

June 24, 2025

NSA and CISA Release CSI Highlighting Importance of Memory Safe Languages in Software Security

FORT MEADE, Md. - The National Security Agency and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint Cybersecurity Information Sheet (CSI) to highlight the importance of adopting memory safe languages (MSLs) in improving software security and reducing the risk of security incidents.

May 27, 2025

NSA, ASD’s ACSC, and other agencies publish three Cybersecurity Information Sheets with guidance on SIEM and SOAR implementation

FORT MEADE, Md. - The National Security Agency (NSA) has joined the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and other agencies to release three publications providing guidance for cybersecurity executives and network defenders to consider when implementing Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms.

May 21, 2025

NSA and Others Publish Advisory Warning of Russian State-sponsored Cyber Campaign Targeting Western Logistics and Technology Entities

FORT MEADE, Md. - The National Security Agency (NSA) is joining several United States and foreign entities to release the Cybersecurity Advisory (CSA), “Russian GRU Targeting Western Logistics Entities and Technology Companies,” to call attention to a Russia state-sponsored cyber campaign targeting Western government organizations and commercial logistics entities, transportation services, and technology companies, including those involved in providing assistance to Ukraine.

April 23, 2025

NSA Publishes Recommendations for Smart Controller Security Controls and Technical Requirements for OT Environments

FORT MEADE, Md. – The National Security Agency (NSA) is releasing a Cybersecurity Technical Report (CTR) to share recommendations for security policies and technical requirements for operational technology (OT) smart controller devices installed in National Security Systems (NSS).

April 15, 2025

Georgia Tech Wins NSA's Codebreaker Challenge for Fourth Consecutive Year

FORT MEADE, Md. – For the fourth consecutive year, the Georgia Institute of Technology (Georgia Tech) took first place in the National Security Agency’s annual Codebreaker Challenge (CBC).
 

Jan. 16, 2025

NSA Jointly Releases Recommendations for Closing the Software Understanding Gap

FORT MEADE, Md. – A report released by the National Security Agency (NSA), the Cybersecurity and Infrastructure Agency (CISA), the Defense Advanced Research Projects Agency (DARPA), and the Office of the Under Secretary of Defense for Research and Engineering (OUSD R&E) urges a national effort to better understand the behavior of software underpinning national security and critical infrastructure systems.

Jan. 13, 2025

NSA and Others Publish Guidance for Secure OT Product Selection

FORT MEADE, Md. - The National Security Agency (NSA) joins the Cybersecurity and Infrastructure Security Agency (CISA) and other organizations to publish guidance helping operational technology (OT) owners and operators integrate security when selecting OT products.
 

Dec. 4, 2024

U.S. Military Academy honored at White House for winning NSA’s 2024 Cyber Exercise

Feelings of pride, accomplishment, and excitement came over West Point cadets in the Indian Treaty Room of the Eisenhower Executive Office Building on Nov. 15, 2024 as The Honorable Harry Coker Jr., National Cyber Director, stepped to the podium.

Nov. 12, 2024

CISA, NSA, and Partners Issue Annual Report on Top Exploited Vulnerabilities

FORT MEADE, Md. - Malicious cyber actors are increasingly exploiting zero day vulnerabilities to compromise enterprise networks, according to an annual Cybersecurity Advisory (CSA) about the top routinely exploited vulnerabilities co-authored by the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and domestic and foreign partners.