CISA, FBI Joint Guidance on Deploying AI Systems Securely

The NSA AISC recently released a cybersecurity information sheet called “Deploying AI Systems Securely”. This sheet was developed in partnership with CISA, the FBI, ASD ACSC, CCCS, NCSC-NZ, and NCSC-UK.

The guidance provides best practices for deploying and operating externally developed artificial intelligence (AI) systems and aims to:

• Alert
• Vulnerabilities

CVE-2025-20111
Cisco Warns Vulns in Nexus 3000 and 9000 Series Switches

By infosecbulletin / Thursday , February 27 2025

Cisco has warned of a critical vulnerability, CVE-2025-20111, in several Nexus switch models. This flaw could let attackers remotely crash...

Read More

• Alert

CVE-2025-0475 & CVE-2025-0555
GitLab’s High-Risk Flaw, Patch Now Urgently!

By infosecbulletin / Thursday , February 27 2025

GitLab has released a security advisory, urging all self-managed installations to upgrade to versions 17.9.1, 17.8.4, or 17.7.6 due to...

Read More

• Cyber Attack

Botnet Powered by 130,000 Devices Targets Microsoft 365 Accounts

By infosecbulletin / Thursday , February 27 2025

A China-linked botnet is targeting Microsoft 365 accounts with widespread password spraying attacks, according to a report by SecurityScorecard. A...

Read More

• Alert
• Cyber Attack
• Data Breach

HaveIBeenPwned Added 244 Million Passwords Stolen By Infostealers

By infosecbulletin / Wednesday , February 26 2025

A breach notification site has added millions of new passwords and email addresses obtained from infostealer malware. Troy Hunt, founder of...

Read More

• Alert
• Cyber Attack

Hackers Exploits RCE flaw in Cisco Small Business Router

By infosecbulletin / Wednesday , February 26 2025

Cybersecurity researchers have discovered a campaign exploiting a remote command execution vulnerability, CVE-2023-20118, in Cisco Small Business Routers. This vulnerability...

Read More

• Alert
• Vulnerabilities

CISA Alerts For Active Exploited Zimbra and Microsoft flaw

By infosecbulletin / Wednesday , February 26 2025

CISA has added two critical vulnerabilities to its Known Exploited Vulnerabilities catalog, urging organizations to quickly patch their systems to...

Read More

• Alert
• Cyber Attack

200 Fake GitHub Repos Attacking Developers to Deliver Malware

By infosecbulletin / Tuesday , February 25 2025

A new cyber campaign called GitVenom poses a serious risk to developers. Security researchers found over 200 fake GitHub repositories...

Read More

• Hot Topic

Renew Dubai visa within minutes with AI-powered Salama

By infosecbulletin / Tuesday , February 25 2025

Residents of Dubai can now easily renew their visas with the new AI-powered digital platform launched by the General Directorate...

Read More

• Alert
• Vulnerabilities

CVE-2024-20953
CISA Flags Oracle Agile PLM Actively Exploited Security Flaw

By infosecbulletin / Tuesday , February 25 2025

CVE-2024-20953 is a vulnerability in Oracle Agile PLM, a product lifecycle management tool. With a CVSS score of 8.8, it...

Read More

• Cyber Attack
• Data Breach

Stablecoin Bank Hacked – Hackers Stolen $49.5M

By infosecbulletin / Monday , February 24 2025

Days after the biggest crypto hack ever, another platform has experienced a major exploit. Infini Earn, a decentralized stablecoin bank,...

Read More

Improve the confidentiality, integrity, and availability of AI systems.
Ensure there are appropriate mitigations for known vulnerabilities in AI systems.
Provide methodologies and controls to protect, detect, and respond to malicious activity against AI systems and related data and services.

CISA recommends that organizations using externally developed AI systems review and apply the provided guidance. They also suggest reviewing the previously published joint guidance on securing AI systems and visiting cisa.gov/ai for more information.