×
Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In Cloud Security CIS Cloud Security Support CIS Support


Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world


About Us Leadership Principles Testimonials

Solutions

secure your organization
Secure Your Organization

CIS Controls®

Prioritized & simplified best practices

CIS Controls Community

Help develop and maintain the Controls

CIS RAM

Information security risk assessment method

CIS CSAT

Assess & measure Controls implementation
secure specific platforms
Secure Specific Platforms

CIS Benchmarks

100+ vendor-neutral configuration guides

CIS Benchmarks Community

Develop & update secure configuration guides

CIS-CAT®

Assess system conformance to CIS Benchmarks

CIS Hardened Images®

Virtual images hardened to CIS Benchmarks
cis securesuite CIS SecureSuite®

Start secure and stay secure with integrated cybersecurity tools and resources designed to help you implement CIS Benchmarks and CIS Controls
u s state local tribal and territorial governments
U.S. State, Local, Tribal & Territorial Governments

Memberships
MS-ISAC®

Cybersecurity resource for SLTT Governments

EI-ISAC®

Election-focused cyber defense suite

Services for Members
Albert Network Monitoring®

Cost-effective Intrusion Detection System

Managed Security Services

VSecurity monitoring of enterprises devices

CIS CyberMarket®

Savings on training and software

Malicious Domain Blocking & Reporting

Prevent Connection to harmful web domains

View All CIS Services  
View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities


CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers

Resources

resources
Secure Your Organization

Blog Advisories Newsletters Press Releases In The News Elections Resources
learn
Learn

White Papers Webinars Case Studies Spotlights Daily Tips
filter by topic
Filter by Topic

CIS Benchmarks CIS Controls® CIS Hardened Images® CIS Services® MS-ISAC® EI-ISAC®
View All Resources  
CIS Logo Show Search Expand Menu
Topic
Type



Press releases
First-of-its-kind offering gives thousands of cybersecurity officials in all 50 states free access to up-to-date cyber threat intelligence.



Emails & Newsletters
Seniors and the elderly are often targeted by online scammers. Here's how to protect yourself and your loved ones against cyber crimes and scams.



Blog post
The Multi-State Information Sharing and Analysis Center has created a list of End-of-Support (EOS) software dates from 1/01/2021 to 4/2021.



Press releases
The contest is open to all K-12 students in all 50 states, the District of Columbia, U.S. territories, tribal nations, and military installations worldwide.



Advisory

Multiple vulnerabilities have been discovered in VMware Workstation Pro and VMware Horizon Client for Windows that could result in information disclosure.




Advisory

Multiple vulnerabilities have been discovered in Apple Products, the most severe of which could allow for arbitrary code execution.




Blog post
In April 2021, CryptoWall, Gh0st, and NanoCore’s return to the MS-ISAC Top 10 Malware list, while BitCoin Miner made its first appearance.



White paper
The Center for Internet Security's 2020 Year in Review highlights all the efforts the cybersecurity nonprofit accomplished in its 20th year in business.



Advisory

A vulnerability has been discovered in Microsoft Windows JET Database Engine that could allow for arbitrary code execution.




Advisory

Multiple vulnerabilities have been discovered in Wi-Fi enabled devices, the most severe of which could allow for data exfiltration.




Advisory

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution.




Advisory

Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for arbitrary code execution in the context of the logged on user.




Advisory

Multiple vulnerabilities have been discovered in Adobe Products, the most severe of which could allow for arbitrary code execution.




Advisory

Multiple vulnerabilities have been discovered in Cisco HyperFlex HX software, the most severe of which could allow for arbitrary code execution.




Advisory

Multiple vulnerabilities have been discovered in Cisco SD-WAN vManage Software, the most severe of which could allow for arbitrary code execution.



1 2 3 93
Subscribe Arrow