cisa
Latest
US recommends Windows users patch against worm vulnerability
Microsoft Windows users who haven't patched their OS (or are using an unsupported version) are at risk of attackers exploiting a vulnerability known as BlueKeep. The Cybersecurity and Infrastructure Security Agency (CISA), Homeland Security's lead cybersecurity agency, said it successfully tested a working exploit for the BlueKeep vulnerability. Specifically, the agency was able to remotely run code on a Windows 2000 computer using BlueKeep, it stated in an advisory. The bug effects computers that are running Windows 7 or earlier (as well as Windows Server 2003 and 2008), and gives potential attackers access through Microsoft's Remote Desktop Services.
Budget bill heads to President Obama's desk with CISA intact
Earlier today, the US House of Representatives passed a 2,000-page omnibus budget bill that contains the entirety of the controversial Cybersecurity Information Sharing Act. Just moments ago, the Senate passed it too. Now the bill is on its way to President Barack Obama's desk, where he has the option to veto it... except he almost certainly won't. The gargantuan document lays out a $1.15 trillion spending plan that has received solid (if not unanimous) support from both sides of the aisle and should prevent a government shutdown like the one we saw in 2013. But at what cost?
Congress tucked CISA inside last night's budget bill
Last night's budget bill wasn't all about avoiding a government shutdown. Packed inside the 2,000-page bill announced by Speaker Paul Ryan (R-WI) is the full text of the controversial Cybersecurity Information Sharing Act (CISA) of 2015. If you'll recall, the measure passed the Senate back in October, leaving it up to the House to approve the bill that encourages businesses to share details of security breaches and cyber attacks.
US Senate passes controversial CISA bill
The US Senate convened for a vote on the controversial Cybersecurity Information Sharing Act (CISA) today as well as five amendments to it. All five amendments, which would have restrained law enforcement from abusing the bill's powers as well as made corporations more accountable for their roles in protecting consumer information, have failed. A cloture motion, which prevents filibustering the initiative, passed at the start of the session today by a vote of 83 - 14. The bill itself passed the Senate with a 74 - 21 vote (it needed 60). It must now do the same in the House before being either signed into law or vetoed by the President.
Apple and Dropbox join fight against controversial cybersecurity bill
Apple and Dropbox have spoken out against the controversial Cybersecurity Information Sharing Act (CISA) that's being discussed in the Senate. In a statement sent to The Washington Post, an Apple rep explained why the company doesn't support the bill: "The trust of our customers means everything to us and we don't believe security should come at the expense of their privacy." Dropbox public policy head Amber Cottle had a similar explanation, saying that "While it's important for the public and private sector to share relevant data about emerging threats, that type of collaboration should not come at the expense of users' privacy."
