CISA, FBI Joint Guidance on Deploying AI Systems Securely

The NSA AISC recently released a cybersecurity information sheet called “Deploying AI Systems Securely”. This sheet was developed in partnership with CISA, the FBI, ASD ACSC, CCCS, NCSC-NZ, and NCSC-UK.

The guidance provides best practices for deploying and operating externally developed artificial intelligence (AI) systems and aims to:

• Alert
• Vulnerabilities

GitHub Desktop Vuln Credential Leaks via Malicious Remote URLs

By infosecbulletin / Tuesday , January 28 2025

Multiple security vulnerabilities have been found in GitHub Desktop and other Git projects. If exploited, these could allow attackers to...

Read More

• Uncategorized

Burp Suite 2025.1 released: Featuring Intruder Capabilities & Bug Fixes

By infosecbulletin / Monday , January 27 2025

PortSwigger has launched Burp Suite 2025.1, adding new features and improvements to enhance usability and efficiency for penetration testers. This...

Read More

• Uncategorized

UnitedHealth confirms 190 million impacted by 2024 data breach

By infosecbulletin / Monday , January 27 2025

UnitedHealth confirmed that the ransomware attack on its Change Healthcare unit last February impacted about 190 million Americans, nearly double...

Read More

• Event

Registration Open For BCS CTF 2025

By infosecbulletin / Monday , January 27 2025

So, to test your cyber security skill, here is another chance to do that. Bangladesh computer society (BCS) is going...

Read More

• International

New Ransomware Tactics Target VMware ESXi Via SSH Tunneling

By infosecbulletin / Sunday , January 26 2025

Sygnia's recent report highlights the changing strategies of ransomware groups targeting VMware ESXi appliances. These attackers exploit vital virtual infrastructure...

Read More

• Uncategorized

Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass

By infosecbulletin / Friday , January 24 2025

An exhaustive evaluation of three firewall models from Palo Alto Networks has uncovered a host of known security flaws impacting...

Read More

• Alert

CISA Releases 6 ICS Advisories Detailing Security Issues

By infosecbulletin / Friday , January 24 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released 6 advisories for Industrial Control Systems (ICS), highlighting vulnerabilities in various...

Read More

• Hot Topic

Account Credentials for Security Vendors Found on Dark Web: Cyble Report

By infosecbulletin / Thursday , January 23 2025

# "While many leaked security credentials belong to customers, some exposed sensitive accounts suggest that security vendors too have been...

Read More

• Vulnerabilities

Four Critical Ivanti CSA Vulnerabilities Exploited: CISA , FBI warns

By infosecbulletin / Thursday , January 23 2025

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory...

Read More

• Alert
• Vulnerabilities

GitLab Releases Patch (CVE-2025-0314) for XSS Exploit

By infosecbulletin / Thursday , January 23 2025

GitLab has released update for high severity cross-site scripting (XSS) flaw. Versions 17.8.1, 17.7.3, and 17.6.4 for both Community Edition...

Read More

Improve the confidentiality, integrity, and availability of AI systems.
Ensure there are appropriate mitigations for known vulnerabilities in AI systems.
Provide methodologies and controls to protect, detect, and respond to malicious activity against AI systems and related data and services.

CISA recommends that organizations using externally developed AI systems review and apply the provided guidance. They also suggest reviewing the previously published joint guidance on securing AI systems and visiting cisa.gov/ai for more information.