Security News > 2021 > July > CISA launches vulnerability disclosure platform for federal agencies
The Cybersecurity and Infrastructure Security Agency today launched a new vulnerability disclosure policy platform for US federal civilian agencies.
The newly launched VDP platform service allows Federal Civilian Executive Branch agencies to identify, monitor, and close security gaps in critical systems with the help of ethical hackers worldwide.
"The platform encourages collaboration and information sharing between the public and private sectors by allowing uniquely skilled researchers to submit vulnerability reports, which agencies will use to understand and address vulnerabilities that were previously unidentified."
CISA's VDP platform works as a central portal through which federal agencies can receive and triage security vulnerabilities disclosed by researchers and members of the general public in agency websites and other Internet-connected assets.
"This new platform allows agencies to gain greater insights into potential vulnerabilities, which will improve their cybersecurity posture," CISA added.
The launch of this VDP platform follows a barrage of cyberattacks targeting US government agencies and critical infrastructure that started with the SolarWinds supply-chain attack in December 2020.
News URL
Related news
- CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability (source)
- CISA Adds ScienceLogic SL1 Vulnerability to Exploited Catalog After Active Zero-Day Attack (source)
- CISA Warns of Active Exploitation of Microsoft SharePoint Vulnerability (CVE-2024-38094) (source)
- CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability (source)