Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In Support CIS Support


Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world

About Us Leadership Principles Testimonials


Secure Your Organization

Secure Specific Platforms

U.S. State, Local, Tribal & Territorial Governments

View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities

CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers


Secure Your Organization


Filter by Topic

View All Resources  
CIS Logo Show Search Expand Menu

Multiple vulnerabilities have been discovered in SolarWinds Orion and ServU-FTP, the most severe of which could allow for remote code execution.

The advanced persistent threat (APT) actors infiltrated the supply chain of SolarWinds, inserting a backdoor into the product.

On 13 December 2020, FireEye announced the discovery of a cyber intrusion that leveraged a commercial software application made by SolarWinds.

Multiple Vulnerabilities have been discovered in SolarWinds N-Central.

Multiple Vulnerabilities have been discovered in SolarWinds Orion, the most severe of which could allow for arbitrary code execution.

Tony Sager feels the CIS Controls reflect a reality in which most organizations are faced with the same kinds of digital threats.

State and local governments need to be more proactive; sharing information about cybersecurity problems they encounter is important.

Sean Atkinson and Tony Sager discuss the top cybersecurity issues from 2020 and what trends are on the road ahead for the industry.

Election officials need to be confident that their vendors have assessed and mitigated any risks with their third-party suppliers.

The guide identifies the most common attack types on supply chains and provides an analysis of each election infrastructure component.

With talk of cyber Pearl Harbors or digital 9/11s, critical infrastructure cybersecurity might border on alarmism, but there is real reason for concern.

CIS thought leaders identify cybersecurity trends the world might expect in 2021. Some include a distributed workforce and new ransomware threats.