Official websites use .gov
Secure .gov websites use HTTPS
Feb. 7, 2024
Combatting Cyber Threat Actors Perpetrating Living Off the Land Intrusions
The National Security Agency (NSA) is proud to partner with the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the United Kingdom National Cyber Security Center (NSC-UK) on CISA’s Cybersecurity Technical Report (CTR) “Identifying and Mitigating Living Off the Land,” which provides guidance on defending against common living off the land (LOTL) techniques. This release follows a May 2023 joint Cybersecurity Advisory on LOTL techniques.
Feb. 2, 2024
General Timothy D. Haugh takes lead of USCYBERCOM and NSA/CSS
FORT MEADE, Md. – General Timothy D. Haugh, U.S. Air Force, assumed command of U.S. Cyber Command (USCYBERCOM) and the National Security Agency (NSA)/Central Security Service (CSS) on February 2, 2024, during a change of command, directorship, and responsibility ceremony at USCYBERCOM/NSA/CSS Headquarters. The ceremony marked the transition of leadership from General Paul M. Nakasone, U.S. Army, to General Haugh.
Jan. 3, 2024
Cybersecurity Speaker Series: Preparing for Post-Quantum
Cryptography is our first and last line of defense for the nation’s most sensitive systems. The quantum threat is real and it is imperative to modernize to protect these systems now. In the next video in the Cybersecurity Speaker Series released today, NSA’s Senior Cryptographic Authority, Dr. Adrian Stanger, and NSA’s Cryptographic Solutions Technical Director, Dr. William J. Layton, sat down with NSA’s Cybersecurity Collaboration Center Chief DIB Defense, Bailey Bickley, to discuss preparing for Post-Quantum.
Dec. 6, 2023
U.S. and International Partners Issue Recommendations to Secure Software Products Through Memory Safety
FORT MEADE, Md. - The National Security Agency (NSA) joins Cybersecurity and Infrastructure Security Agency (CISA) and U.S. and international partners in releasing ”The Case for Memory Safe Roadmaps” Cybersecurity Information Sheet (CSI). Expanding on the “Software Memory Safety” CSI published by NSA in April 2023, the report provides guidance for software manufacturers and technology providers to create roadmaps tailored to eliminate memory safety vulnerabilities from their products.
Oct. 23, 2023
Cybersecurity Speaker Series: D3FEND
The National Security Agency (NSA)’s Cybersecurity Collaboration Center (CCC) has released the latest installment in its Cybersecurity Speaker Series, focused on the D3FEND framework for cybersecurity.
Oct. 19, 2023
NSA Shares Recommendations to Advance Device Security Within a Zero Trust Framework
The National Security Agency (NSA) has released a Cybersecurity Information Sheet (CSI) to enable federal agencies, partners, and organizations to assess devices in their systems and be better poised to respond to risks associated with critical resources.
Oct. 18, 2023
How to Protect Against Evolving Phishing Attacks
The National Security Agency (NSA) and U.S. partners have released a new report describing the latest techniques in phishing attacks and the defenses organizations can deploy against them.
Oct. 17, 2023
NSA and Partners Issue Additional Guidance for Secure By Design Software
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), and international partners released an updated Cybersecurity Information Sheet (CSI) to provide additional guidance for technology manufacturers to ensure their products are secure by design and default.
Oct. 10, 2023
NSA and U.S. Agencies Issue Best Practices for Open Source Software in Operational Technology Environments
The National Security Agency (NSA) is joining U.S. federal partners to release cybersecurity guidance to promote understanding of open source software (OSS) implementation and provide best practices to secure operational technology (OT) and industrial control systems (ICS) environments.
Oct. 5, 2023
NSA and CISA Advise on Top Ten Cybersecurity Misconfigurations
The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing a joint Cybersecurity Advisory (CSA) highlighting the top ten most common cybersecurity misconfigurations found in large organizations’ networks. The CSA details tactics, techniques, and procedures (TTPs) that cyber actors could use to compromise these networks, as well as mitigations to defend against this threat.