Risky Bulletin Risky Bulletin: Major CISA leadership exodus underway
May 26, 2025
CISA is experiencing a significant leadership shakeup, raising questions about the future of cybersecurity initiatives. The U.S. government is set to audit NIST, digging into its backlog of vulnerabilities. Meanwhile, a mysterious advanced persistent threat has been traced back to the Spanish government. Additionally, the podcast exposes the troubling rise in phishing campaigns exploiting the SVG image format. The Silk Typhoon group's high-profile hacks and recent arrests highlight the ongoing battle against cybercrime.
AI Snips
Chapters
Transcript
Episode notes
CISA Leadership Exodus Impact
- CISA is experiencing a major leadership exodus affecting top divisions and regional leaders.
- This could impact cybersecurity, infrastructure security, and agency operations significantly.
NIST Vulnerability Backlog Audit
- The US government will audit NIST over its huge vulnerability backlog in the National Vulnerability Database.
- This aims to assess and improve how NIST manages vulnerability submissions.
Spain’s Coreto Espionage Group
- Spain's government is linked to a long-active cyber espionage group called Coreto.
- Despite infrequent operations, Coreto is small but highly sophisticated targeting neighboring and Spanish-speaking countries.