Sept. 22, 2021

CISA, FBI, and NSA Release Conti Ransomware Advisory to Help Organizations Reduce Risk of Attack

WASHINGTON — The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and National Security Agency (NSA) published a cybersecurity advisory today regarding increased Conti ransomware cyberattacks. The advisory includes technical details on the threat and mitigation steps that public and private sector organizations can take to reduce their risk to this ransomware.

Aug. 3, 2021

NSA, CISA release Kubernetes Hardening Guidance

FORT MEADE, Md. — The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) released a Cybersecurity Technical Report, “Kubernetes Hardening Guidance,” today. This report details threats to Kubernetes environments and provides configuration guidance to minimize risk.

July 29, 2021

Defeating malicious cyber actors requires partnerships

ANNAPOLIS, Md. — Participating on a panel alongside other high-level officials from the federal, state and private sector, National Security Agency Deputy Director George Barnes discussed NSA’s role within the nation’s shared response to future malicious cyber activities during Thursday’s Annapolis Cybersecurity Summit.

July 29, 2021

NSA Issues Guidance on Securing Wireless Devices in Public Settings

FORT MEADE, Md. — NSA released the Cybersecurity Information Sheet, “Securing Wireless Devices in Public Settings” today to help National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) teleworkers identify potential threats and minimize risks to their wireless devices and data.

July 23, 2021

Artificial Intelligence: Next Frontier is Cybersecurity

FORT MEADE, Md. — NSA’s Jason Wang, technical director for the Computer and Analytic Sciences Research Group, forecasted a future in which AI will support the Intelligence Community’s (IC) efforts to secure and defend our Nation’s networks.

June 17, 2021

NSA Releases Guidance on Securing Unified Communications and Voice and Video over IP Systems

FORT MEADE, Md. — NSA released a Cybersecurity Technical Report today that provides best practices and mitigations for securing Unified Communications (UC) and Voice and Video over IP (VVoIP) call-processing systems. The comprehensive report, “Deploying Secure Unified Communications/Voice and Video over IP Systems,” also describes potential risks to UC/VVoIP systems that aren’t properly secured.

May 19, 2021

NSA’s Role in the President’s Cyber Executive Order

FORT MEADE, Md. — The National Security Agency (NSA) will play an important role in implementing the requirements of an Executive Order (EO) that was recently signed by President Biden. The EO, entitled Improving the Nation’s Cybersecurity, is designed to modernize cybersecurity defenses, improve information-sharing between the Federal Government and private sector on cyber issues, and strengthen the ability of the United States to respond to cyber incidents when they occur.

April 15, 2021

Russian Foreign Intelligence Service Exploiting Five Publicly Known Vulnerabilities to Compromise U.S. and Allied Networks

FORT MEADE, Md. — The National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) jointly released a Cybersecurity Advisory, “Russian SVR Targets U.S. and Allied Networks,” today to expose ongoing Russian Foreign Intelligence Service (SVR) exploitation of five publicly known vulnerabilities.

April 9, 2021

Rob Joyce begins as NSA’s Director of Cybersecurity

FORT MEADE, Md. — Rob Joyce started as the National Security Agency’s new Director of Cybersecurity last week.

March 24, 2021

NSA Cybersecurity Collaboration Center Releases First Speaker Series Video on Protective Domain Name System (PDNS)

NSA released today the first video of its new Cybersecurity Collaboration Center speaker series. In these talks, NSA experts will share insights, lessons, and contributions of their cybersecurity work.

March 4, 2021

NSA and CISA Release Cybersecurity Information on Protective DNS

FORT MEADE, Md. — The National Security Agency and Cybersecurity and Infrastructure Security Agency (CISA) released a cybersecurity information sheet, “Selecting a Protective DNS Service” on Thursday. This publication details the benefits of using a Protective Domain Name System (PDNS), which criteria to consider when selecting a PDNS provider, and how to effectively implement PDNS.

Feb. 25, 2021

NSA Issues Guidance on Zero Trust Security Model

FORT MEADE, Md. — The National Security Agency published a cybersecurity product, “Embracing a Zero Trust Security Model,” on Thursday.

Jan. 28, 2021

Computing Society Honors NSA Cybersecurity Expert

FORT MEADE, Md. — Dr. Josiah Dykstra, NSA’s Cybersecurity Collaboration Center Subject Matter Expert, has been recognized as a Distinguished Member of the Association for Computing Machinery (ACM).

Jan. 14, 2021

NSA Recommends How Enterprises Can Securely Adopt Encrypted DNS

FORT MEADE, Md. — The National Security Agency released a cybersecurity product, “Adopting Encrypted DNS in Enterprise Environments,” Thursday explaining the benefits and risks of adopting the encrypted domain name system (DNS) protocol, DNS over HTTPs (DoH), in enterprise environments. The release provides solutions for secure implementation based on enterprise network needs.

Jan. 8, 2021

NSA Cybersecurity 2020 Year in Review

FORT MEADE, Md. — Last year marked the NSA Cybersecurity Directorate's first full year since its establishment, and today we are releasing our 2020 NSA Cybersecurity Year in Review. This document details how NSA worked to prevent and eradicate cyber threats to our nation's most sensitive systems and critical infrastructure. Our cybersecurity mission integrated threat intelligence, vulnerability analysis, cryptographic knowledge, defense operations and diverse technical expertise to secure the nation.

Jan. 5, 2021

NSA releases “Eliminating Obsolete Transport Layer Security (TLS) Protocol Configurations” Cybersecurity Information

FORT MEADE, Md. — The National Security Agency released a cybersecurity product detailing how to detect and fix out-of-date encryption protocol implementations. Networks and systems that use deprecated forms of Transport Layer Security (TLS) or Secure Sockets Layer (SSL) for traffic sessions are at risk of sensitive data exposure and decryption.

Dec. 21, 2020

NSA Year in Review

FT. MEADE, Md. — The pandemic affected everyone this year, but our mission didn’t slow down. As our Director, GEN Paul Nakasone said, we “are one team, and each of us contributes our unique expertise to a mission that is all the more critical in times of crisis.”

Dec. 17, 2020

NSA Cybersecurity Advisory: Malicious Actors Abuse Authentication Mechanisms to Access Cloud Resources

Ft. MEADE, Md. — In response to ongoing cybersecurity events, the National Security Agency (NSA) released a Cybersecurity Advisory Thursday “Detecting Abuse of Authentication Mechanisms.” This advisory provides guidance to National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) network administrators to detect and mitigate against malicious cyber actors who are manipulating trust in federated authentication environments to access protected data in the cloud.

Dec. 7, 2020

Russian State-Sponsored Malicious Cyber Actors Exploit Known Vulnerability in Virtual Workspaces

Ft. MEADE, Md. — The National Security Agency (NSA) released a Cybersecurity Advisory today detailing how Russian state-sponsored actors have been exploiting a vulnerability in VMware® products to access protected data on affected systems.

Oct. 27, 2020

NSA Secures 5G Through Partnerships

As NCSAM comes to a close, we look to our NSA experts to give a general overview on a popular topic: 5G technology.

Oct. 26, 2020

NSA Cybersecurity Perspectives on Quantum Key Distribution and Quantum Cryptography

In response to requests from mission customers, NSA is publicly sharing guidance on quantum key distribution (QKD) and quantum cryptography (QC) as it relates to securing National Security Systems (NSS).

Oct. 26, 2020

A change in how we interact with technology and IoT

The Internet of Things (IoT) is a world of evolving and emerging technologies

Oct. 21, 2020

The First Line of Defense in Cybersecurity

Ft. MEADE, Md. — National Cybersecurity Awareness Month (NCSAM) is in full swing and U.S. Cyber Command and NSA/CSS are honored to support it. The theme for this year’s NCSAM campaign is “Do your part. #BeCyberSmart.” Are you doing your part by being cyber aware?

Oct. 20, 2020

NSA Warns Chinese State-Sponsored Malicious Cyber Actors Exploiting 25 CVEs

FORT MEADE, Md. — NSA released a new cybersecurity advisory detailing 25 vulnerabilities that Chinese state-sponsored malicious cyber actors are currently exploiting or targeting to encourage stakeholders to apply mitigations.

Oct. 15, 2020

Securing Your Home Office

FT. MEADE, Md. — Throughout the past year, home offices have become the new norm for many U.S. Government employees. This represents new opportunities and efficiencies—plus, who doesn’t love taking calls in your sweats?! But with increased flexibility comes increased risk. The rapid transition to telework is a hacker’s dream, so it’s important to make sure the

Sept. 22, 2020

NSA Releases Cybersecurity Guidance “Selecting and Safely Using Multifactor Authentication Services”

FORT MEADE, Md. — NSA cybersecurity guidance on "Selecting and Safely Using Multifactor Authentication Services".

Sept. 21, 2020

Janelle Romano recognized for extraordinary work in Maryland cybersecurity industry

FORT MEADE, Md. — The Cybersecurity Association of Maryland, Inc. presented Janelle Romano, with the 2020 Cyber Warrior Woman Award last week. This award recognizes extraordinary women who perform extraordinary work in Maryland’s cybersecurity industry.

Sept. 17, 2020

Reduce Risk of Network Compromises

FT. MEADE, Md. — The National Security Agency has released two cybersecurity information sheets (CSIs) with best practices to help National Security System (NSS) and Department of Defense (DoD) teleworkers and their systems administrators secure their networks and handle potential compromises.

May 28, 2020

Exim Mail Transfer Agent Actively Exploited by Russian GRU Cyber Actors

FORT MEADE, Md. — Russian military cyber actors, publicly known as Sandworm Team, have been exploiting a vulnerability in Exim mail transfer agent (MTA) software since at least last August.

April 24, 2020

Working from Home? Select and Use Collaboration Services More Securely

FORT MEADE, Md. — Article about NSA's release of cybersecurity guidance about selecting and safely using collaboration services for telework. NSA released a full and a short version of the guidance. By following the practical guidelines listed in this guidance, users can mitigate some of the risks posed by malicious cyber threat actors. 

April 22, 2020

Detect & Prevent Cyber Attackers from Exploiting Web Servers via Web Shell Malware

FORT MEADE, Md. — NSA Cybersecurity Information Sheet about detecting and mitigating web shell malware.

Feb. 12, 2020

Heading to RSA: NSA Brings Innovative Ideas to Cybersecurity Industry

FORT MEADE, Md. — Article previewing NSA's participation in the RSA 2020 conference.

Jan. 29, 2020

U.S. Cyber Command, NSA Poised to Support U.S. Election Security

USCC's Brig. Gen. Hartman & NSA's Dave Imbordino participate in the University of Southern California "Election Cyersecurity Initiative" forum, Jan. 28, 2020.

Jan. 14, 2020

A Very Important Patch Tuesday

FORT MEADE, Md. — On 14 January 2020, Microsoft released a patch for a Windows 10 vulnerability discovered by NSA (CVE-2020-0601).

Nov. 14, 2019

NSA Inspires the Girl Scouts on Their Way to the Moon

FT. MEADE, Md. — On 19 October, more than 250 Girl Scouts gathered in Hunt Valley, Md. to put their leadership and cybersecurity skills to the test at the inaugural Girl Scouts Cyber Challenge. Their quest was clear: The world’s first moon colony had been hacked, and now they must form an incident response team to determine who hacked their systems and how to stop them. 

Nov. 7, 2019

We're Not Bots - People Solving Hard Problems

FORT MEADE, Md. — Keppel Wood recently joined the new Cybersecurity Directorate as the Chief Operations Officer of the Cybersecurity Collaboration Center- 3C for short. “Your network is only as secure as its last patch or latest update, at speed,” says Keppel, who considers herself a computer nerd at heart.

Oct. 25, 2019

We’re Not Bots – We’re Ohana

FT MEADE, Md. — What’s unique about National Security Agency Hawai’i is not only the palm trees and never-ending sunshine, it’s the fact that they’re collocated with their primary customer, the U.S. Indo-Pacific Command. In short, they’re one big Ohana. That’s Hawaiian for family, which is what keeps G Galloway (known as “G”) excited to come to work every day.

Oct. 1, 2019

Strengthening the Front Line: NSA Launches New Cybersecurity Directorate

FORT MEADE, Md. — Article explaining NSA's new Cybersecurity Directorate.

Sept. 20, 2019

NSA Launches Latest Codebreaker Challenge

FORT MEADE, Md. — Article about NSA launching its 20 September 2019 to 10 January 2010 Codebreaker Challenge competition for students at U.S. based academic institutions.

Sept. 3, 2019

Time to Sharpen Pencils and Change Passwords

FORT MEADE, Md. — Article reminding parents and students to follow best cybersecurity practices as students return to school in the fall.

July 23, 2019

Teaching the Next Generation of Cybersecurity Professionals

FT. MEADE, Md. — Our nation continues to face a shortage of cybersecurity professionals but GenCyber camps, established in 2014, are intended to help address this deficit.

July 23, 2019

FAQ: NSA/CSS Cybersecurity Directorate

FT. MEADE, Md. — Q: What is NSA’s Cybersecurity Directorate and what is its mission? A: NSA’s Cybersecurity Directorate is a major organization that unifies NSA’s foreign intelligence and cyber defense missions and is charged with preventing and eradicating threats to National Security Systems and the Defense Industrial Base. 

June 4, 2019

NSA Cybersecurity Advisory: Patch Remote Desktop Services on Legacy Versions of Windows

FORT MEADE, Md. — NSA advisory urging Microsoft Windows administrators and users to ensure they are using a patched and updated system in the face of growing cybersecurity threats.

May 30, 2019

Educating the Next Generation of Cyber Warriors: National Centers of Academic Excellence Celebrate 20th Anniversary

FORT MEADE, Md. — NSA and its academic, industry, agency partners are at the forefront of fostering the next generation of cyber warriors. As the National Centers of Academic Excellence (CAE) program continues to grow, the focus remains on promoting higher education and research in cyber defense to produce professionals that are prepared to solve tomorrow’s problems.

March 30, 2019

Leadership Through Storytelling

FT. MEADE, Md. — Growing up, Marianne Bailey’s father introduced her to the world of technology and told her she could be whatever she wanted to be. Over the years, she had many mentors, like her high school physics teacher, giving her that same message. A message she is passing on to future generations.

March 5, 2019

Ghidra -- the Software Reverse Engineering Tool You’ve Been Waiting for -- is Here!

FORT MEADE, Md. — Article announcing NSA's release of the Ghidra software tool.

March 4, 2019

NSA @ RSA

FORT MEADE, Md. — Article highlighting NSA's participation at the 2019 RSA Conference in San Francisco, California.

Feb. 27, 2019

New Software Helps to Mitigate Supply Chain Management Risk

Article about NSA and the Trusted Computing Group releasing software and standards for a supply chain validation process that can be used for any computing device.

Jan. 23, 2019

NSA and N.C. A&T: Partnering for a Diverse Workforce

As a Historically Black College and University (HBCU) with a  focus in Science, Technology, Engineering and Math (STEM), North Carolina Agricultural and Technical State University (N.C. A&T) has partnered with the National Security Agency (NSA) for over 20 years.

Dec. 20, 2018

Cybersecurity: What is Credential Stuffing?

NSA cybersecurity article about credential stuffing attacks, data breaches, and how to protect yourself.

Nov. 7, 2018

In the Spotlight: Kimberly Ferguson-Walter

In the Spotlight Article on Kimberly Ferguson-Walter

Oct. 19, 2018

Connected Desks Aren't What They Used to Be

Article for 2018 National Cybersecurity Awareness Month on the internet of things implications of internet connected furniture.

Oct. 18, 2018

In the Spotlight: Captain Donovan Oubré, USN

In the Spotlight Article on Captain Donovan Oubré for National Cybersecurity Awareness Month 2018.

Oct. 16, 2018

An NSA Cybersecurity Technology that Helps "Port Proof" Your Computer

Article about an NSA licensed cybersecurity technology that is available to the public.

Oct. 11, 2018

In the Spotlight: Paula Lewandoski

In the Spotlight article about Paula Lewandoski for National Cybersecurity Awareness Month 2018.

Oct. 9, 2018

Cybersecurity + Diversity: We want to see you in San Antonio!

Article about NSA participation in the 2018 SACNAS National Diversity in STEM Conference on October 11-13th in San Antonio, Texas.

Oct. 4, 2018

In the Spotlight: Kolade "Yemi" Rotimi

In the Spotlight article for National Cybersecurity Awareness Month featuring Kolade "Yemi" Rotimi-- an NSA subject matter expert assigned to the Office of the Director of National Intelligence's Cyber Threat Intelligence Integration Center.

Oct. 2, 2018

Home, Safe, Home: How to Keep Your Home Cybersecure

Article summarizing home cybersecurity mitigation tips for National Cybersecurity Awareness Month, 2018.

Aug. 13, 2018

Measuring Stress in a High-Risk Environment

Article on the Cyber Operations Stress Survey (COSS), an assessment developed by NSA researchers Dr. Celeste Lyn Paul and Dr. Josiah Dykstra. Organizations can use the COSS to assess employee stress or measure the stress-lowering benefits of policy changes and technical mitigations.

July 9, 2018

Mission Critical: Engaging Schools and Students for Tomorrow's Workforce

Academic engagement is a critical part of NSA's mission and the future of the Agency. Partnerships with schools and universities help grow the talent and tools necessary to support a cyber-secure nation.

June 6, 2018

Cyber on I-C-E

Much like goalies Braden Holtby and Marc-Andre Fleury, cyber defenders must develop a deep understanding of their adversary so that they can be prepositioned to block any attempt to gain access.

April 20, 2018

NSA's Innovative Cyber Tool: "Unfetter" Makes Cyber Better

2018 article about NSA open source release of cybersecurity tool "Unfetter". NSA's 'Unfetter' is designed to help various industries implement better techniques for network security.

April 5, 2018

NSA's Cybersecurity Operations Mission in the Public Eye

As cybersecurity threats continue to evolve, NSA's NCTOC is well equipped to defend and protect our Nation's critical networks.

March 28, 2018

U.S. Naval Academy wins the inaugural NSA Cyber Exercise

The United States Naval Academy takes home the inaugural NSA Cyber Exercise Trophy

March 14, 2018

The Inaugural NSA Cyber Exercise, former Cyber Defense Exercise, brings new cyber competition to U.S. Service Academy Cadets and Midshipmen

NCX is a new cyber competition, developing and testing the cyber skills of U.S. Service Academies' cadets and midshipmen.

Dec. 12, 2017

"Section 702" Saves Lives, Protects the Nation and Allies

The U.S. Intelligence Community relies on Section 702 of the Foreign Intelligence Surveillance Act in the constant hunt for information about foreign adversaries determined to harm the nation or our allies.

Oct. 27, 2017

NSA has SWAG: Information Assurance Research Project to Enhance Cybersecurity

NSA's 'Secure Wearable Authentication Gear' (SWAG) project reflects the agency's research to advance cybersecurity in mission applications.

Aug. 24, 2017

"Section 702" Saves Lives, Protects the Nation and Allies

The U.S. Intelligence Community relies on Section 702 of the Foreign Intelligence Surveillance Act in the constant hunt for information about foreign adversaries determined to harm the nation or our allies.

July 21, 2017

Coding Their Way to Success!

NSA GenCyber camps are introducing K-12 students and teachers to cybersecurity principles all summer.

Aug. 9, 2016

NSA Research Sponsors Special Award for Young Scientists and Engineers

The NSA Research Directorate hosted award winners from the Intel Science and Engineering Fair for a visit.

Aug. 4, 2016

NSA Staffer Talks Cybersecurity with Teen Math Phenoms

Bierman, ever a showman, made his third consecutive appearance in July as part of the agency's STEM Education Outreach Program to strengthen science, technology, engineering, and mathematics (STEM) instruction - and to raise awareness of STEM career paths.

Oct. 29, 2015

NSA to the Next Generation: "The Nation Needs You!" Agency Launches NSA Day of Cyber

A collective effort by academia, industry, associations, and government is needed to help develop the next generation of cybersecurity professionals.

Oct. 29, 2015

Steve LaFountain (Dean of the College of Cyber) “ Building the Next Generation of Cyber Professionals

How prepared is the nation for the growing cyber threat against not just national security systems, but critical infrastructure and the economy?

Oct. 28, 2015

The Road to an Optimal Cybersecurity Workforce

The Road to an Optimal Cybersecurity Workforce - A Quick Perspective: Necessary Drivers, Possible Roadblocks, and Current Directions

Oct. 27, 2015

In Discussion with Brad Martin, Senior Researcher, NSA Research Directorate - Science and Technology for 21st Century Smart Systems

Discussions with Brad Martin, Senior Researcher, NSA Research Directorate, about the Internet of Things (IoT). What is the Internet of Things? Internet of Things (IoT) is considered to be the physical devices with compute power that are connected to the Internet. These objects can collect and share information, and communicate over the Internet. Experts predict that there will be over 20 billion IoT devices by 2020.

Oct. 9, 2015

In Discussion with Philip Quade, Chief of NSA Cyber Task Force

Discussions with Philip Quade, Chief of NSA Cyber Task Force, about resilience/resiliency in relation to cybersecurity.

Oct. 1, 2015

In Discussion with Curt Dukes (IAD) - Overview of NSA's Cyber Security Mission

Discussions with Curt Dukes, IAD, about NSA's role in Cyber Security, and how NSA/IAD protect national security networks.