The Peace Corps’ digital environment is riddled with weak spots – from exposed sensitive files to critical phishing gaps – leaving data and agency systems vulnerable to threats, a watchdog warned.  […]

The Department of the Interior (DOI) failed to properly classify and approve millions of dollars in IT purchases, according to a new report from the agency’s Office of Inspector General (OIG), warning that those mistakes could have costly cybersecurity consequences.  […]

Stopgap funding legislation deadlocked in the Senate puts key cybersecurity programs at risk if the measure is not passed ahead of a Sept. 30 shutdown deadline.   […]

A recent federal watchdog report found that the Pentagon should consolidate some of its cyberspace operations training to reduce costs and improve mission effectiveness. […]

The United States’ critical infrastructure remains dangerously exposed to cyberattacks, experts warned at the Billington CyberSecurity Summit, stressing that government and private industry must deepen collaboration to meet the growing cyber threats. […]

The Defense Information Systems Agency (DISA) is accelerating development of its multi-partner environment (MPE), a hybrid-cloud solution designed to give U.S. and allied forces real-time access to shared data – a capability leaders say will be critical in the next global conflict.  […]

After months of vowing to “blow up” the Risk Management Framework (RMF), Katie Arrington, the Pentagon’s acting chief information officer (CIO), announced today that her office will release a revamped version of the framework in the coming weeks. […]

After narrowly avoiding a lapse in its funding earlier this year, the Common Vulnerabilities and Exposures (CVE) Program is getting an update, the Cybersecurity and Infrastructure Security Agency (CISA) announced on Wednesday.  […]

In his first public remarks since his Senate confirmation, National Cyber Director Sean Cairncross pledged to spearhead a “whole-of-nation approach” to defend U.S. cyberspace, explaining that a strong cybersecurity workforce is central to that effort. […]

Federal agencies made notable gains in cyber-physical system (CPS) security over the past year, but major risks remain, according to new research from MeriTalk and Claroty.  […]

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and 19 international partners released a joint guide on Sept. 3 that aims to inform the global cyber community on the value of implementing a software bill of materials (SBOM). […]

While artificial intelligence is becoming indispensable to proactive cyber defense strategies, federal cyber leaders warned on Sept. 4 that agencies must pair AI-driven detection with strong response planning and resilience measures to withstand inevitable cyberattacks.   […]

The House Homeland Security Committee voted today to forward to the full House with a positive recommendation legislation that would extend the soon-to-expire Cybersecurity Information Sharing Act of 2015 (CISA 2015). […]

Chinese state-sponsored hackers are waging a global cyber campaign against critical infrastructure, U.S. and international authorities warned today. […]

Sen. Ron Wyden, D-Ore., is asking Chief Justice John Roberts to conduct a comprehensive review of the federal court system’s cybersecurity protections after court systems recently suffered their second major hack in five years.  […]

U.S. Navy leaders are emphasizing the urgent need to shift cybersecurity approaches, embrace innovation, train the workforce, and drive cultural change as critical strategies to stay ahead of rapidly evolving technologies and emerging digital threats. […]

The Defense Information Systems Agency (DISA) is seeking insight from industry for cybersecurity operations, risk management, and compliance support for a potential Military Sealift Command (MSC) Cybersecurity Support Services (CSS) contract. […]

Microsoft has announced that it will transition its services and products to meet post-quantum cryptographic standards by 2033 and adopt quantum-safe capabilities by 2029.  […]

The Cybersecurity Infrastructure and Security Agency (CISA) and Sandia National Laboratories are warning that public and private sector collaborators must work to close the “software understanding” gap to better secure the nation’s systems and infrastructure.  […]

A new report from the Department of Energy’s (DOE) Office of Inspector General (OIG) reveals that while DOE has taken steps to address some previously identified cybersecurity weaknesses, a substantial number of vulnerabilities remain. […]

The National Institute of Standards and Technology (NIST) plans create five artificial intelligence use cases for security control overlays that will address risks with the use and development of AI systems.   […]

The National Institute of Standards and Technology (NIST) has unveiled its “lightweight cryptography” standard for small network devices after years of review.   […]

The Defense Advanced Research Projects Agency (DARPA) has announced the winners of its inaugural AI Cyber Challenge (AIxCC), a two-year competition aimed at advancing the use of artificial intelligence to secure critical open-source software systems. […]

The U.S. Immigration and Customs Enforcement (ICE) said it has taken down servers operated by a Russian ransomware group that compromised over 450 victims within the United States in just over two years.   […]

New legislation introduced by Sen. Rick Scott, R-Fla., last Thursday seeks to block foreign adversaries from using internet-connected appliances to infiltrate and disrupt the United States’ electric grid.  […]

The Federal Courts system is ramping up its cybersecurity protections after saying that its electronic case filing system has been the target of recent “escalated cyberattacks,” including sensitive case information.  […]

Newly proposed rules from the Federal Aviation Administration (FAA) would require, if adopted, that unmanned aircraft systems (UAS) – also known as drones – undergo new cybersecurity screening processes to prevent security breaches and unauthorized access.  […]

A group of Republican senators is asking Commerce Secretary Howard Lutnick to investigate data security vulnerabilities posed by Chinese open-source AI models – such as DeepSeek – that might be feeding information back to the Chinese government.  […]

The clock is ticking for contractors to comply with the Department of Defense’s (DoD) long-anticipated cybersecurity compliance policy. By Oct. 1, the Cybersecurity Maturity Model Certification (CMMC) clause could start appearing in all applicable DoD contracts. […]

The Government Accountability Office (GAO) is asking Congress to address a patchwork of varying cybersecurity regulations and requirements across critical infrastructure sectors, saying that while cybersecurity has evolved, standardizing related regulations has not.  […]