As the clock begins to tick down to the end of fiscal year (FY) 2025 in September, the Defense Counterintelligence and Security Agency (DCSA) is continuing its work to onboard the entire Non-sensitive Public Trust (NSPT) population into DCSA’s Continuous Vetting (CV) services. […]
The White House on Tuesday launched the long-awaited U.S. Cyber Trust Mark, a voluntary cybersecurity labeling program for wireless internet of things (IoT) devices marketed to consumers. […]
The U.S. Space Force has launched its first-ever cyber range squadron, officially adding “cyber defenders” to its roster as it prepares to battle digital threats in the space domain. […]
The Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced on Jan. 3 that it has imposed sanctions on a Beijing-based cybersecurity company known as Integrity Technology Group, Inc. (Integrity Tech) for its role in a spate of malicious cyber activities. […]
The Cybersecurity and Infrastructure Security Agency (CISA) issued an update today regarding last week’s cybersecurity incident at the Treasury Department, stating that no other Federal agencies appear to have been impacted. […]
The Office of Inspector General (OIG) for the Export-Import Bank of the United States (EXIM) discovered that the agency did not properly protect personally identifiable information (PII) stored on a shared network drive, in an incident the OIG is calling a “potential breach.” […]
The Department of Health and Human Services (HHS) kicked off a notice of proposed rulemaking on Dec. 27 that it said aims to change the existing Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule with the goal of improving cybersecurity protections for electronic protected health information (ePHI). […]
A bicameral pair of lawmakers is demanding answers from the Treasury Department following a China state-sponsored breach of some of the department’s sensitive systems. […]
The Department of Homeland Security (DHS) is gearing up to release a new white paper on how the Federal government can improve collaboration with industry to bolster the security of the subsea cable network, according to DHS Assistant Secretary for Trade and Economic Security Christa Brzozowski. […]
Despite grumbling from some lawmakers on Capitol Hill, the Pentagon’s newly released Cybersecurity Maturity Model Certification (CMMC) rule has successfully completed its 60-day Congressional Review period without any changes, signaling that the rulemaking process is officially complete. […]
More than 87 percent of all cyber threats took place over encrypted networks this year, a new Zscaler ThreatLabz report finds. The solution, the cybersecurity company says, lies in adopting zero trust security architectures. […]
The Federal Communications Commission (FCC) is mounting a quick effort to push telecom service providers to certify they are taking steps to strengthen their networks from cyberattacks following the China-sponsored Salt Typhoon hacks of U.S.-based carriers including AT&T, Verizon, and Lumen – and as many as eight providers in all. […]
Cybersecurity and Infrastructure Security Agency (CISA) Deputy Director Nitin Natarajan is urging critical infrastructure sectors to “elevate the discussion” of the growing risks of legacy operational technology (OT) systems. […]
The Department of the Air Force (DAF) plans to establish an operational technology (OT) office that will oversee the cybersecurity of control systems, commerce technologies, as well as embedding infrastructure, according to a senior Air Force official. […]
The Cybersecurity and Infrastructure Security Agency (CISA) published guidance today that provides best practices to protect against cyberattacks by Salt Typhoon – a People’s Republic of China (PRC)-affiliated threat actor that has compromised networks of major global telecommunications providers. […]
Through its notable sophistication, Salt Typhoon has cemented its status as one of the most advanced cyber-espionage groups in history – a new report reveals the tactics behind its success. […]
The U.S. Army is overhauling its cybersecurity policy with a new directive signed by Army Chief Information Officer (CIO) Leo Garciga last week that aims to streamline the service’s implementation of its Risk Management Framework (RMF). […]
The Pentagon’s newly implemented Cybersecurity Maturity Model Certification (CMMC) rule is receiving a mixed reaction from lawmakers on Capitol Hill. […]
A new bipartisan bill from Sens. Bill Cassidy, R-La., Maggie Hassan, D-N.H., John Cornyn, R-Texas, and Mark Warner, D-Va., is aiming to bolster cybersecurity in the healthcare sector and safeguard Americans’ health data. […]
Reps. Gerry Connolly, D-Va., and Dale Strong, R-Ala., introduced a new bipartisan bill on Thursday that aims to improve and expand the CyberCorps Scholarship for Service (SFS) Program. […]
Industry experts shed more light on the recent Salt Typhoon hacks during a congressional hearing Tuesday as leaders of the Senate Judiciary Subcommittee on Privacy, Technology, and the Law called on the Federal government to “galvanize action now” against the China-linked hacking group’s recent infiltration of commercial telecommunications infrastructure. […]
Just one day after National Cyber Director (NCD) Harry Coker urged Congress to pass bipartisan legislation that would bolster efforts to harmonize cybersecurity regulations across the Federal government, a companion bill was introduced in the House by Rep. Clay Higgins, R-La. […]
The FBI and Cybersecurity and Infrastructure Security Agency (CISA) issued a statement on Wednesday saying that Salt Typhoon’s recent hacks into commercial telecommunications infrastructure in the United States have affected “a limited number of individuals who are primarily involved in government or political activity.” […]
The Pentagon’s push to strengthen its cybersecurity workforce is gaining momentum, with the time it takes to onboard a new civilian employee now dropping below 80 days, a senior official told reporters last week. […]
A top Biden administration cybersecurity official laid out her wish list today for how the incoming Trump-Vance administration should prioritize cybersecurity challenges and regulations. […]
The U.S. Army is launching a pilot program to help small businesses meet the cybersecurity requirements of the Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC) program, as the Pentagon moves to integrate these standards into defense contracts. […]
Members of the House Homeland Security Committee are probing the intelligence community to provide updated information on the cyber threat China poses to the United States in the wake of reports that claim the PRC breached major phone and broadband companies. […]
The Google Play Store has more than 200 malicious applications that resulted in nearly 8 million downloads onto mobile devices, according to a new report from the cloud security company Zscaler. […]
After joining the Cybersecurity and Infrastructure Security Agency’s (CISA) Secure by Design Pledge in May, Google released its strategy on Tuesday for how it’s meeting the pledge’s seven security goals. […]
As cyber threats evolve at lightning speed, Defense Department (DoD) Chief Information Security Officer (CISO) David McKeown unveiled his top ten cyber priorities, with cryptographic modernization (CM), zero trust, and defense industrial base (DIB) cybersecurity at the top of the list. […]