CISA ‘passive’ scanning pilot for election systems aims to find unpatched vulnerabilities

The Cybersecurity and Infrastructure Security Agency is working with state election officials to test a new capability called Crossfeed that will provide actionable -- though limited -- information on election systems for the upcoming November elections.

“We are working with state election officials who have encouraged us to use the passive scanning on their systems” to search for unpatched vulnerabilities, CISA’s Bob Kolasky said at an event today. The agency is not planning to “scale up” Crossfeed during this year’s...