The Cybersecurity and Infrastructure Security Agency (CISA) published guidance today that provides best practices to protect against cyberattacks by Salt Typhoon – a People’s Republic of China (PRC)-affiliated threat actor that has compromised networks of major global telecommunications providers. […]

As cyberattacks continue to target hospitals and other healthcare organizations, the Department of Health and Human Services (HHS) is failing to meet some of its bigger-picture cybersecurity goals for the sector, the Government Accountability Office (GAO) said in a Nov. 13 report.  […]

Through its notable sophistication, Salt Typhoon has cemented its status as one of the most advanced cyber-espionage groups in history – a new report reveals the tactics behind its success.  […]

As the number of successful cyberattacks on healthcare organizations continues to rise, a new report from the Department of Health and Human Services (HHS) Office of Inspector General (OIG) is calling on HHS to better ensure the protection of electronic protected health information (ePHI). […]

A report out this month by the Environmental Protection Agency’s (EPA) Inspector General (IG) finds that drinking water systems serving approximately 26.6 million people have critical or high-risk cybersecurity vulnerabilities. […]

What’s in store for Federal cybersecurity policy when the Trump administration takes charge in January? Illumio’s Gary Barlet told us in an exclusive interview that he is looking for much of the current bedrock of cybersecurity policy to carry forward, but with an accelerated timeline for action and greater accountability for results. […]

A new bipartisan bill from Sens. Bill Cassidy, R-La., Maggie Hassan, D-N.H., John Cornyn, R-Texas, and Mark Warner, D-Va., is aiming to bolster cybersecurity in the healthcare sector and safeguard Americans’ health data. […]

The Cybersecurity and Infrastructure Security Agency (CISA) said on Thursday that it recently conducted a red team assessment (RTA) at the request of an unnamed critical infrastructure organization, with mixed results. […]

As cyber threats continue to grow in complexity and scale, artificial intelligence (AI) is emerging as a critical tool for enhancing security, efficiency, and accuracy across Federal agencies, according to Federal cybersecurity experts. […]

Department of Veterans Affairs (VA) Chief Information Officer (CIO) Kurt DelBene told lawmakers on Wednesday that the agency’s cybersecurity capabilities are suffering from a shortage of skilled IT workers that stems from a slim budget to hire enough of them. […]

Industry experts shed more light on the recent Salt Typhoon hacks during a congressional hearing Tuesday as leaders of the Senate Judiciary Subcommittee on Privacy, Technology, and the Law called on the Federal government to “galvanize action now” against the China-linked hacking group’s recent infiltration of commercial telecommunications infrastructure. […]

Just one day after National Cyber Director (NCD) Harry Coker urged Congress to pass bipartisan legislation that would bolster efforts to harmonize cybersecurity regulations across the Federal government, a companion bill was introduced in the House by Rep. Clay Higgins, R-La. […]

As technology evolves, so too do the methods used by criminals. To keep pace with these increasingly sophisticated threats, law enforcement agencies are turning to artificial intelligence (AI) technologies to bolster their investigative capabilities. […]

Former Acting National Cyber Director (NCD) Kemba Walden said on Thursday that the current sector-by-sector assignment of critical infrastructure areas by U.S. regulators is handicapping the Federal government and hindering nationwide cyber resilience. […]

National Cyber Director (NCD) Harry Coker Wednesday urged Congress to pass bipartisan legislation that would bolster the Biden administration’s efforts to harmonize cybersecurity regulations across the Federal government. […]

A top Biden administration cybersecurity official laid out her wish list today for how the incoming Trump-Vance administration should prioritize cybersecurity challenges and regulations. […]

China’s structured and well-funded ecosystem for cyber dominance poses a growing threat to U.S. cybersecurity, a senior Cybersecurity and Infrastructure Security Agency (CISA) official warned, saying the U.S. must continue to foster public-private partnerships and global alliances to defend against those threats.   […]

The Internal Revenue Service (IRS) announced Thursday that it reached a major milestone in fiscal year (FY) 2024 by resolving a longstanding significant deficiency in its information system controls 11 years after it was identified. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has named ECS – an IT systems integrator focused on data and AI, cybersecurity, and enterprise transformation solutions – the prime contractor on a six-year, $528 million task order for CISA’s Continuous Diagnostics and Mitigation (CDM) Program Office. […]

The National Counterintelligence and Security Center (NCSC) within the Office of the Director of National Intelligence released security guidance last week to help protect emerging technology startup companies from threats posed by nation-state actors.   […]

A National Institute of Standards and Technology (NIST) advisory board is urging the agency to scale and implement support for its national cyber vulnerability database to protect national security interests.  […]

The U.S. Army is launching a pilot program to help small businesses meet the cybersecurity requirements of the Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC) program, as the Pentagon moves to integrate these standards into defense contracts. […]

A large-scale spear-phishing campaign led by a foreign adversary is targeting government and IT sector systems, the Cybersecurity and Infrastructure Security Agency (CISA) warned in an Oct. 31 alert.   […]

As cybersecurity talent continues to thin relative to demand and artificial intelligence adoption surges, organizations are being left exposed to security risks amid slowing global workforce growth, according to a new report on the cybersecurity workforce released Thursday.  […]

The Treasury Department on Monday evening issued its final rule to block U.S. private sector investments in China that involve hot-button technologies including AI, quantum, and semiconductors. […]

The Department of Homeland Security’s (DHS) Cyber Safety Review Board (CSRB) will launch an investigation into China-sponsored infiltrations of U.S. telecom networks and infrastructure that have come to light since the beginning of this month, DHS confirmed today.  […]

Several Defense Department (DoD) officials highlighted the potential impact of artificial intelligence (AI) for cybersecurity efforts on Thursday, starting with the department’s information security chief, who emphasized AI’s ability to enhance threat detection and response capabilities. […]

Members of the House Homeland Security Committee are probing the intelligence community to provide updated information on the cyber threat China poses to the United States in the wake of reports that claim the PRC breached major phone and broadband companies. […]

The Google Play Store has more than 200 malicious applications that resulted in nearly 8 million downloads onto mobile devices, according to a new report from the cloud security company Zscaler.  […]

After joining the Cybersecurity and Infrastructure Security Agency’s (CISA) Secure by Design Pledge in May, Google released its strategy on Tuesday for how it’s meeting the pledge’s seven security goals.   […]