Cybersecurity and Infrastructure Security Agency

Acting Director Andersen swore in Sean Coyne, Senior Advisor for Cybersecurity, and Marco Disandro, External Affairs Specialist, yesterday. Both bring a wealth of knowledge and expertise that will help advance our mission. Join us in welcoming them to our team!

We're proud to support our state, local, and federal partners to ensure a safe, secure, and successful @BostonMarathon! With over 30K runners & 500K attendees, #Boston130 requires teamwork on all levels to ensure a smooth event.

🛡️ We added 8️⃣ vulnerabilities to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q for more information.

Review our joint #Cybersecurity Advisory with @FBI, @NSAgov, @EPA, @ENERGY and @CNMF_CyberAlert for immediate actions to safeguard against this threat and strengthen your organization’s cybersecurity posture. 👉 go.dhs.gov/iFo

🛡️ We added Apache ActiveMQ improper input validation vulnerability CVE-2026-34197 to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q for more information.

Today I met with @CISAgov Acting Director Nick Andersen. We discussed CISA’s priorities, including an overview of the FY27 budget request and the challenges facing the agency as Congress continues work on FY26 appropriations. As a member of the House Appropriations Subcommittee on Defense, I remain focused on ensuring our national security agencies have the resources necessary to defend against cyber threats while maintaining strong oversight of taxpayer dollars. I appreciate Acting Director Andersen taking the time to meet, and I look forward to continuing to work together to strengthen our cybersecurity and protect the critical systems Americans rely on every day.

CISA’s Counter IED mission remains hard at work during the shutdown. We continue delivering tools and services that help communities deter, prevent, and respond to bombing threats. Learn more in our latest factsheet. go.dhs.gov/ivc

If you're in an area affected by Typhoon Sinlaku, stay indoors! Since typhoons bring extreme winds, heavy rains, and possible flooding, it is not safe to be outside when the storm is passing. Please take shelter until local officials declare that it's safe to leave.

📢 Stay informed on the latest vulnerabilities with @CISAgov's Vulnerability Bulletin & gain valuable insights into emerging threats. 💡Check out the latest updates: cisa.gov/news-events/bu… #Cybersecurity #InfoSec #VulnerabilityManagement

🛡️ We added Microsoft Office remote code execution vulnerability CVE-2009-0238 & Microsoft SharePoint server improper input validation vulnerability CVE-2026-32201 to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q for more information.

We're shutdown but bad guys are NOT. That’s why it’s important we continue to provide real-life scenario-based training to prepare staff & security at World Cup venues for large scale events. Recent bomb prevention training on preparation & response. go.dhs.gov/3Zs

Now hiring: Information Cybersecurity Specialists. Join Tech Force to protect critical federal systems, strengthen cybersecurity, and work on mission-driven tech challenges. techforce.gov

🛡️ We added seven vulnerabilities to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q for more information. #Cybersecurity #InfoSec

Public safety bomb techs converged on Levi’s Stadium for Bombing Prevention Tech Tng. Despite the shutdown, we exposed bomb techs to cutting-edge equipment through real-life scenarios based on current threats to special events, like FIFA & America 250. go.dhs.gov/3Zs

🛡️ We added Ivanti Endpoint Manager Mobile code injection vulnerability CVE-2026-1340 to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q for more information. #Cybersecurity #InfoSec

⚠️ We issued two🆕 and one updated public #ICS Advisories. These advisories provide info about current security issues, vulnerabilities, & exploits surrounding ICS. More at cisa.gov/news-events/ic…

National level events don’t stop just because CISA is shutdown. We recently conducted explosive blast modeling for @NatlParkService in Philly to support America 250 events. This beneficial training drives risk mitigation & helps secure large crowd events. go.dhs.gov/iF9

🛡️ We added Fortinet FortiClient EMS improper access control vulnerability CVE-2026-35616 to our Known Exploited Vulnerabilities Catalog. Visit go.dhs.gov/Z3Q for more information. #Cybersecurity #InfoSec

Review our joint #Cybersecurity Advisory for immediate actions to safeguard against this threat and strengthen your organization’s cybersecurity posture. go.dhs.gov/iFo

Recent targeted violent attacks show bad actors are still active, even as CISA is shutdown. To prevent future violent events, this week, we provided bombing prevention & mitigation training to national Sr leaders in public safety, industry & more. bit.ly/41WCyJe