The events of 9/11 – and more recently, the SolarWinds cyber incident – have illuminated a vital lesson: seamless collaboration across the intelligence community, Federal agencies, industries, academia, and international partners is essential for a comprehensive understanding of national security threats, a senior intelligence official said this week. […]
With 40 out of 60 planned sites slated for fiscal year (FY) 2024 now operational, the Defense Information Systems Agency (DISA) is aiming for full deployment of its Thunderdome zero trust network initiative by FY 2027, according to a senior agency official. […]
The Department of Homeland Security’s (DHS) Cyber Safety Review Board (CSRB) is poised to reveal details about its next investigation, the board’s chair said today. […]
Senior U.S. defense leaders offered a blunt message at last week’s Billington CyberSecurity Summit in Washington: no matter how high-tech your security is, it’s only as good as your basic cyber hygiene that surrounds it. […]
U.S. Cyber Command (CYBERCOM) has or will be deploying its cyber force approximately 25 times on “hunt forward” missions this year, marking an uptick from 2023 levels and a five-fold increase since 2018. […]
The International Counter Ransomware Initiative (CRI), which first launched with 31 participating countries in 2021, is now nearing 70 international members that are committed to reducing the risk of ransomware attacks globally. […]
The U.S. Army aims to introduce new regulations by February – or potentially sooner – that will require comprehensive ingredient lists for nearly all newly acquired or developed software that the service branch uses. […]
The White House’s Office of the National Cyber Director (ONCD) today released its Roadmap to Enhancing Internet Routing Security, offering more than a dozen recommendations to network operators and service providers as well as the Federal government to secure the internet ecosystem. […]
The Department of Defense’s (DoD) Office of the Chief Information Officer (CIO) has named Dr. Diba Hadi as its new Principal Director of the Cyber Academic Engagement Office (CAEO). […]
Federal officials said this week that international collaboration and better sharing of actionable security guidance are needed to help meet the challenge of increasingly sophisticated cyberattacks from China and other adversaries who are making the ability to attack critical infrastructure industries part of their military strategies. […]
The Cybersecurity and Infrastructure Security Agency (CISA) added a new vulnerability to its known exploited vulnerability catalog following a warning last week from Lumen Technologies that Chinese state-sponsored threat actor Volt Typhoon is actively exploiting a zero-day vulnerability in network management platform Versa Director. […]
House Oversight and Accountability Committee Chairman James Comer, R-Ky., and Subcommittee on Cybersecurity, Information Technology, and Government Innovation Chairwoman Nancy Mace, R-S.C., are looking for answers on Federal government and U.S. citizen exposure to a possible cyberattack against National Public Data. […]
The Federal Chief Information Security Officer Council (CISO) and Chief Data Officer (CDO) Council are poised to unveil a new data security framework in the coming weeks with the aim of improving data protection across government agencies. […]
The Federal Aviation Administration (FAA) is requesting public comments after unveiling a proposal that includes cybersecurity mandates for the future manufacturing of airplanes and aviation equipment, according to a proposed rule published in the Federal Register on Wednesday. […]
State officials said this week that they are balancing centralized and decentralized distribution approaches as they try to put money from the Federal government’s State and Local Cybersecurity Grant Program (SLCGP) to work for them. […]
Reps. John Moolenaar, R-Mi., and Raja Krishnamoorthi, D-Il., urge the Commerce Department to investigate China’s TP-Link Technology Co, a leading Wi-Fi router provider in the U.S., citing potential national security risks. […]
The Department of Defense (DoD) published a proposed rule today to integrate Cybersecurity Maturity Model Certification (CMMC) requirements into the contracting process as the Pentagon moves forward with its cyber certification initiative. […]
Federal officials this week said that new phishing preventative pilot programs, quantum-resistant cryptography, and other identity authentication measures need to be further implemented and standardized across Federal agencies. […]
A new report out this week by the Federal Housing Finance Agency’s (FHFA) Office of Inspector General (OIG) found that FHFA’s network has “serious vulnerabilities that increase the likelihood that hacking attempts will succeed.” […]
The Department of Defense (DoD) is on the verge of implementing a key aspect of its Cybersecurity Maturity Model Certification (CMMC) program, following the completed review of a proposed rule that will modify the Defense Federal Acquisition Regulations. […]
A bipartisan pair of senators today announced their plan to introduce companion legislation to strengthen Federal cybersecurity by requiring government contractors to implement vulnerability disclosure policies (VDPs). […]
Sen. Charles Grassley, R-Iowa, said this week he sent letters to 15 Federal agencies – along with the FBI and the White House – demanding information about their exposure to an AT&T data breach disclosed by the company last month that includes most wireless customer call and text records from May to October 2022. […]
Following a record-breaking ransomware payout of $75 million this year, industry cloud security leaders warn that other ransomware attackers may become emboldened by other groups’ successes. […]
To highlight the one-year anniversary of the White House’s National Cyber Workforce and Education Strategy (NCWES), the Biden administration held a workshop focused on expanding opportunities for veterans to obtain good-paying cyber jobs. […]
The U.S. Senate on Thursday confirmed Michael Sulmeyer as the first-ever cyber policy chief for the Department of Defense (DoD). […]
Several U.S. government agencies including the FBI and the National Security Agency (NSA) issued an advisory today warning about a North Korean state-sponsored hacking group that they say is conducting a “global espionage campaign” aimed at advancing North Korean military and nuclear programs. […]
A group of industry cybersecurity leaders told lawmakers today that harmonizing “overlapping and inconsistent” government cybersecurity regulations would help reduce the administrative burden on their cyber workforces and free up additional resources for fighting threats. […]
The Cybersecurity and Infrastructure Security Agency (CISA) said today that Brandon Wales is stepping down as the agency’s executive director, and that Bridget Bean will take over as executive director next month. […]
Rep. Ritchie Torres, D-N.Y., is planning to introduce a bill that would codify the Department of Homeland Security’s (DHS) Cyber Safety Review Board (CSRB) following Friday’s Microsoft outage linked to the cybersecurity giant CrowdStrike. […]
Federal government operations affected by Friday’s Microsoft outage linked to the cybersecurity giant CrowdStrike appeared to recovering their footing today, including the Social Security Administration (SSA), which reopened its offices today. […]