A CISA guide to learn more about the threats posed by phishing emails and unencrypted HTTP and associated mitigation activities. This guidance is derived from Binding Operational Directive 18-01 — Enhance Email and Web Security and includes lessons learned and additional considerations for non-federal entities seeking to implement actions in line with federal civilian departments and agencies, as directed by CISA.
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
