Trusted CI Email Lists

Trusted CI has the following email lists to aid members of our communities and others interested in cybersecurity get timely news about cybersecurity incidents impacting widely-used software or services. The Trusted CI Compliance Resources webpage also has a link to the HigherEdCUI Slack channel.

We use the Trusted CI Announce List to communicate about timely cybersecurity related events and news of interest to the community at large.  This is a low-volume list that does not support discussions.

• Subscribe to the Trusted CI Announce List

• View the public archive for the Trusted CI Announce List

The Trusted CI Security Discussion List is for anyone in the community with questions about security or for discussions about cybersecurity (e.g. Trusted CI may discuss the severity of a vulnerability on this list before announcing it on the other two lists). Unlike the announcement lists, discussion is encouraged. Traffic to this list is currently pretty low, but may change based on community interest and needs.

• Subscribe to the Trusted CI Discussion List

• To email the Trusted CI Discussion List, please send email to discuss@trustedci.org. (Posting is moderated and limited to subscribers.)

• Archives of the Trusted CI Discussion List are viewable only by list members (requires authentication).

The Trusted CI Cybersecurity Vulnerabilities mailing list has been retired in favor of “The OmniSOC Community Advisory”, a semi-monthly newsletter highlighting current events and information security news aimed at the cyberinfrastructure community. To subscribe, send an email to omnisoc-community-advisory-l-subscribe@iu.edu .

The archive of previously announced vulnerabilities (before April 2024) is available at Cyberinfrastructure Vulnerabilities Announcement List.

Here are a few other CVE/vulnerability announcement lists which may be of interest.

• CISA

• SANS

• NIST National Vulnerability Database

• OpenCVE