Potential new legislation to update FISMA could codify CISA's role and grant it additional authority.
A joint advisory from the FBI, CISA, and NSA warns that the Conti ransomware operation is still a threat to enterprises, despite some takedowns of its infrastructure.
The REvil ransomware group has come back online after disappearing following the attack on Kaseya in July.
A newer ransomware group known as Vice Society is targeting the PrintNightmare vulnerabilities in some of its intrusions now.
TA505, a well-known cybercrime group, is using signed MSI files and other techniques to install the ServHelper RAT on victims' systems.