Members of the House Oversight and Accountability Committee are launching an investigation into recent China-based cyber espionage campaigns that breached the email systems of Federal agencies, including the Department of State and the Department of Commerce. […]
Ransomware accounted for 61 percent of malware-based data breach incidents over most of 2019, according to the Verizon 2020 Data Breach Investigations Report, reflecting that financial gains are the top motivator for three-quarters of threat actors. […]
The Internal Revenue Service (IRS) failed to record compromised taxpayer identification numbers (TINs) for 89 breaches reported to the agency by outside organizations, putting over 11,000 taxpayers at risk and leading to tax return fraud for 79 citizens, according to an audit conducted by the Treasury Inspector General for Tax Administration (TIGTA). […]
The General Services Administration (GSA) plans on proposing new rules in the Federal Register next spring for Federal contractors that would put the responsibility on contractors to report any cyber incident that potentially compromises systems or information owned by the government. […]
The State Department confirmed that its unclassified email system was breached, putting some employees’ personally identifiable information at risk. […]
The recent data breach at the Office of Personnel Management has put a spotlight on the Department of Homeland Security’s Continuous Diagnostics and Mitigation (CDM) Program. There have been articles and blog posts that call into question the usefulness and logic of CDM because it didn’t detect the attackers or block the exploit at OPM. […]
— from my colleague Frank Briguglio at Dell Software… By Frank J. Briguglio, CISSP, Security Architect, Dell Software The Office of Personnel Management (OPM) has stated that any government employee, contractor or military service member that has filled out the “Questionnaire for National Security Positions SF-86” since 2000 (and possibly prior) is at risk of […]