CISA’s new ransomware vulnerability notification program

The Cybersecurity and Infrastructure Security Agency (CISA) has launched the Ransomware Vulnerability Warning Pilot program to proactively detect vulnerabilities in US critical infrastructure. CISA will use open-source and internal tools, as well as its existing services and technologies, to identify vulnerabilities and warn organizations, particularly those in the healthcare sector. The program aims to reduce the risk of ransomware incidents by addressing known vulnerabilities promptly. Organizations are advised to sign up for CISA’s no-cost Cyber Hygiene Vulnerability Scanning service and work with regional CISA cybersecurity advisors to access additional services.