The Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory April 20, along with Federal law enforcement partners and international allies, that the agency says lays out the “most comprehensive view” of the cyber threat Russia poses to critical infrastructure owners since Russia invaded Ukraine in February. […]
The volume of phishing-based cyberattacks rose by 29 percent in 2021 over prior-year levels and was driven in part by an increase in phishing-as-a-service schemes, according to new research from cloud security services provider Zscaler and its ThreatLabz research operation. […]
The General Services Administration (GSA) is working on a series of playbooks for Federal agencies to use as they proceed with implementing plans to migrate toward zero trust security architectures, and expects to begin releasing those within a couple of months, a senior GSA technology official said today. […]
The Office of Management and Budget (OMB) is forging ahead with executing President Biden’s Federal customer experience improvement executive order issued last December by framing the planned service improvements around five distinct major life events where citizens may rely more heavily on the government for help. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is seeking industry feedback on two reference documents, one for Secure Cloud Business Applications (SCuBA) and a framework for organization visibility data, according to an April 19 CISA blog post. […]
The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and the U.S. Treasury Department issued a joint cybersecurity advisory (CSA) on April 18 warning of North Korean state-sponsored actors targeting attacks on crypto and blockchain technology providers. […]
The Department of Education was one of three agencies to receive funding from the General Service Administration’s (GSA) Technology Modernization Fund (TMF) for Zero Trust services, and the agency’s chief information officer Steven Hernandez said the agency is prioritizing the control pillar of the zero trust architecture with the funds. […]
The Cybersecurity and Infrastructure Security Agency (CISA) said today it adding to its Joint Cyber Defense Collaborative (JCDC) group several private sector firms with expertise in protecting industrial control systems (ICS) and operational technology (OT). […]
The U.S. Army’s new Risk Management Framework (RMF) 2.0 has proved to be a “big game-changer,” not just in terms of managing risk, but also in building a strong cybersecurity community within the agency, an Army official said today. […]
The modernization of identity, credential, and access management (ICAM) has long been critical to improving Federal agency cybersecurity, and is only becoming more urgent due to President Biden’s cybersecurity executive order (EO) and associated policy directives requiring agencies to move to zero trust security architectures, government officials said on April 19 at a virtual event organized by FedInsider. […]
Reps. Nancy Mace, R-S.C., Ro Khanna, D-Calif., and Gerry Connolly, D-Va., introduced legislation to get ahead of the quantum computing curve protecting Federal agencies from the hacking risks connected to the emerging tech. […]
The National Institute of Standards and Technology (NIST) is working to apply its Cybersecurity Framework to the ground-based segments of space operations, an April 18 NIST report says. […]
Sens. James Lankford, R-Okla., and Mike Braun, R-Ind., have introduced legislation that seeks to streamline Federal hiring processes to allow for more flexible career paths, and to better address agency needs. […]
The Government Accountability Office (GAO) found in a new report that a 2018 change in the law determining whether the Federal government pays fair or reasonable prices for goods and services has not resulted in much of a difference in contract evaluations for two Federal agencies with considerable buying power. […]
As the Russian invasion of Ukraine continues through its second month with no let-up in sight, Federal cybersecurity and law enforcement officials are warning that they still see indications of potential Russian cyberattacks on United States critical infrastructure, and are reiterating their “Shields Up” warning to meet those potential threats. […]
The U.S. Census Bureau on April 11 unveiled a new data tool that provides transparency on racial and income data across the United States, and is searchable by individual states. […]
The Digital Services Coalition (DSC) has released its strategic priorities and goals for 2022–2025, which include introducing a shared language for digital services and digital transformation, along with providing new tools and technology to support the DSC community. […]
With state and local governments (SLGs) becoming more tempting targets for cyberattacks every day, Federal and SLG experts are increasingly urging the importance of communication between the public and private sector in order to achieve a unified and stronger American cybersecurity posture. […]
Longtime Navy veteran Tracy L. Hines was promoted from captain to Rear Adm. (lower half) and assigned to be the Navy Cyber Security Division Director in Navy’s Washington, D.C., Office of Naval Operations, DoD announced April 6. […]
The ever-growing influx of data collected from thousands of sensors means that the U.S. Army needs more help than ever in sorting through that sea of information, and creating a robust data fabric to help with that task is essential, leaders from the service branch said this week. […]
In response to President Biden’s first executive order in office that aims to advance racial equity and support for underserved communities, the White House on April 14 released summaries of the equity plans agencies have put forth to meet the EO’s requirements. […]
As the Office of Management and Budget’s (OMB) effort to transform the President’s Management Agenda from a list of goals into actionable policy steps gathers steam, OMB is fleshing out its list of Federal agency officials who are taking on leadership rules not only for the three major PMA pushes but for numerous strategic goals within each of them. […]
The U.S. Department of Commerce announced the appointment of 27 new experts to the National Artificial Intelligence (AI) Advisory Committee (NAIAC) – the first appointments for the recently established committee. […]
When implementing zero trust security architectures, an official from the Department of Health and Human Services (HHS) said today that the real change is not a technology change, but instead a “cultural change” within the organization. […]
The Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI, Department of Energy (DoE), and National Security Agency (NSA), is warning that advanced persistent threat (APT) actors are seeking to gain full access to industrial control systems (ICS) and Supervisory Control and Data Acquisition (SCADA) systems, CISA warned in a cybersecurity advisory April 13. […]
In response to the Biden Administration calling on agencies to transform customer experience in government, the Office of Management and Budget (OMB) issued a memo Wednesday directing agencies to identify and reduce the burden individuals go through when applying for Federal services. […]
The Department of Labor’s (DOL) Bureau of Labor Statistics (BLS) is seeking information and sources for a Virtual Data Enclave (VDE) for managing data in a protected environment with a tool to share restricted microdata with researchers authorized to access the data. […]
The long road to implementing zero trust security architectures may be driven by top-down policy directives and prioritizing technology pillars, but the art and science of communication and collaboration are showing up as vital inputs into organizing Federal agency technologists and network users to move toward the government’s zero trust goals. […]
With the 60-day deadlines for some of the objectives from the Office of Management and Budget’s Zero Trust memo now in the rearview, Federal agencies should have a zero trust implementation plan in place, with a focus on initial data categorization and laying the groundwork for a zero trust architecture. […]
When NASA needed to land a probe on Mars, the landing sequence was the riskiest part of the multi-year, multi-billion-dollar mission-critical program. Prior to launch, NASA simulated the process under all potential weather and environmental conditions. Leaving nothing to chance, they used DDN storage solutions to fuel the artificial intelligence (AI) and advanced machine learning applications. After the successful landing on Mars, DDN was further entrusted with the data that made the 91-million-mile journey back to earth for analysis and other simulations. […]