CISA Considers Shortening Deadlines for Fixing Cyber Vulnerabilities Amid AI Concerns
The Cybersecurity and Infrastructure Security Agency (CISA) is contemplating reducing the time allowed for fixing critical IT system vulnerabilities from weeks to just three days. This consideration arises from concerns that advanced AI models, such as Mythos and OpenAI's GPT-5.4-Cyber, could enable hackers to exploit vulnerabilities much faster than before. The potential change reflects the need for quicker responses to cyber threats, as AI tools can identify and exploit software flaws in a matter of hours. The proposal is being discussed by CISA's acting chief, Nick Andersen, and the U.S. national cyber director, Sean Cairncross. 
