Today the Cyber Safety Review Board is proud to release its first-ever report on the #Log4j vulnerability. Learn more ⬇️…
The CSRB is a ground-breaking public-private partnership. Never before have industry and government #cyber leaders come together in this way to review serious incidents, identify what happened & advise the entire community on how we can do better in the future.
Directed by @POTUS in his EO on Improving the Nation’s Cybersecurity, @SecMayorkas launched the CSRB. I’m proud to serve as Chair alongside Deputy Chair Heather Adkins of Google.
Learn more about CSRB members, cyber luminaries from gov and private sector ➡️…
The CSRB ran a rigorous fact-finding process to understand ground truth and draw lessons learned from #Log4j for the future.
We appreciate the nearly 80 organizations and individuals that shared insights and info with us, including software developers, end users, security professionals, and US & foreign gov partners. This was an unprecedented effort that will drive change and better #cybersecurity.
Thank you to my fellow Board members and to the entire CSRB team for your collaboration and dedication for this first review. More reviews to come from this new institution in the #cyber ecosystem.

• • •

Missing some Tweet in this thread? You can try to force a refresh

Keep Current with Under Secretary Rob Silvers

Under Secretary Rob Silvers Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!


Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @DHS_Policy

Jul 14
The CSRB conducted an exhaustive review of the events surrounding the December 2021 disclosure of a vulnerability in #Log4j, which led to one of the most intensive cybersecurity responses in history. Highlights from the report 🧵 1/
#Log4j is one of the most serious software vulnerabilities ever. It’s an endemic vulnerability and unpatched versions will remain in systems for years to come, perhaps a decade or longer. The #Log4j event is not over. Risk remains and network defenders must stay vigilant. 2/
Many companies could not quickly identify where in their environments they had vulnerable code, revealing opportunities to increase software transparency and capacity to respond quickly to newly-discovered vulnerabilities. 3/
Read 7 tweets
Jul 12
Last week, I was in Qatar and the UAE for important engagements to expand security cooperation between the United States and each nation, and to advance key homeland security arrangements and objectives. Read more 👇… ImageImage
I signed several arrangements with Prime Minister and Interior Minister @KBKAIThani to deepen @DHSgov security partnerships on aviation security and visa fraud, including support for Qatar’s preparations to host a safe and secure @FIFAWorldCup.… Image
.@DHSgov will strengthen its collaboration with Qatar on cybersecurity policy, and we will share information on cyber threats as part of new security arrangements we signed.
Read 8 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!


0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy


3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!