Rep. Nancy Mace, R-S.C., has reintroduced legislation that would require the Office of Management and Budget (OMB) and the Department of Defense (DoD) to update Federal acquisition policies so that all federal contractors are required to implement vulnerability disclosure policies (VDPs) that comply with National Institute of Standards and Technology guidelines. […]
Tags
Cybersecurity
Think-tank panelists at a Jan. 29 Congressional Internet Caucus Academy event talked about possible avenues for artificial intelligence development and Federal cybersecurity improvements during the 119th Congress. […]
Sen. Gary Peters, D-Mich., a leading voice on cybersecurity issues in Congress, announced on Tuesday that he will not seek reelection in 2026. […]
Sen. Joni Ernst, R-Iowa, is asking President Trump to put in place a strong chief information officer (CIO) at the Small Business Administration (SBA) to improve the agency’s IT and cybersecurity functions. […]
Legacy privileged access management (PAM) solutions, rooted in a perimeter-centric security model, can become security liabilities for Federal agencies. In an interview with MeriTalk, James Scobey, chief information security officer (CISO), Keeper Security, discussed his recent move to Keeper from the U.S. Securities and Exchange Commission (SEC), Federal agencies’ progress toward zero trust security architectures, and why modern PAM solutions are a foundational element of zero trust. […]
From overturning numerous Federal workforce policy pillars to canceling a well-regarded executive order about how the government should approach artificial intelligence technologies, the new Trump administration has been issuing a small blizzard of more than two dozen executive orders since taking office on Monday that are sweeping away numerous orders issued by President Biden during his term in office. […]
President Biden’s latest cybersecurity-themed executive order issued today aims to engineer security improvements in at least a dozen major areas, with Federal agency systems, cloud services, and software emerging as prominent topics on an exhaustive list of security policy items. […]
Increasing numbers of spyware firms are popping up around the globe and more nations are turning to their cyber tools, warned National Counterintelligence and Security Center (NCSC) Director Michael Casey. […]
The National Institute of Science and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) is asking for feedback on an updated risk management framework draft that will steer the future of the agency’s ransomware prevention guidance. […]
The Cybersecurity and Infrastructure Security Agency (CISA) has released a Jan. 10 report on adoption of the agency’s cross-sector cyber performance goals that finds four critical infrastructure sectors are seeing decreased cyber threats since putting the performance goals in place. […]
The Intelligence and National Security Alliance (INSA) is calling on the incoming Trump administration to prioritize workforce development, cybersecurity, and the transformative impact of artificial intelligence (AI) technology within the Intelligence Community (IC). […]
Science fiction is no longer just fiction – it’s reality – as policymakers look to the Government Accountability Office (GAO) for advice on how to make brain-signal-powered computer chips ethical and safe. According to the watchdog, it’s going to require handing consumers control of their brain signal data and ramping up data privacy. […]
National Cyber Director (NCD) Harry Coker used a Jan. 7 farewell address prior to the new Trump administration taking office to recap his office’s work on range of security initiatives since 2021, and to urge the incoming administration and Congress to push over the finish line his office’s long-sought goal of achieving “harmonization” of Federal cybersecurity regulations. […]
The White House on Tuesday launched the long-awaited U.S. Cyber Trust Mark, a voluntary cybersecurity labeling program for wireless internet of things (IoT) devices marketed to consumers. […]
The Cybersecurity and Infrastructure Security Agency (CISA) today released cybersecurity performance goals that the agency said will help to protect the information technology and product design sectors from cyber threats. […]
A bicameral pair of lawmakers is demanding answers from the Treasury Department following a China state-sponsored breach of some of the department’s sensitive systems. […]
The increasing use of artificial intelligence technology – both from security threat and protection improvement perspectives – are among the top look-ahead issues for 2025 among officials with providers of security technologies to the Federal government. […]
A bipartisan pair of senators is asking the Department of Homeland Security (DHS) for more information on the agency’s efforts to protect Global Positioning System (GPS) technologies from foreign threats to their operation. […]
The Department of Homeland Security (DHS) is gearing up to release a new white paper on how the Federal government can improve collaboration with industry to bolster the security of the subsea cable network, according to DHS Assistant Secretary for Trade and Economic Security Christa Brzozowski. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released guidance today to protect “highly targeted” individuals – senior government and political officials – against the cyber espionage activity of Salt Typhoon. […]
While the Pentagon continues to build its cybersecurity capabilities, not everyone within the agency’s departments is prioritizing meeting cybersecurity standards, said David McKeown, the Department of Defense’s (DoD) senior information security officer and deputy chief information officer, on Friday. […]
The Cybersecurity and Infrastructure Security Agency (CISA) today unveiled a draft update of its National Cyber Incident Response Plan (NCIRP), which was first published in 2016, and is seeking public comment on the draft through mid-January. […]
More than 87 percent of all cyber threats took place over encrypted networks this year, a new Zscaler ThreatLabz report finds. The solution, the cybersecurity company says, lies in adopting zero trust security architectures. […]
Several agencies aren’t as secure as they need to be after missing deadlines to meet Internet of Things (IoT) cybersecurity requirements, the Government Accountability Office (GAO) revealed. […]
The Department of Energy (DoE) needs to invest in and implement enterprise-wide data analytics capabilities in order to better identify and mitigate risk, according to a new report from the DoE Office of Inspector General (OIG). […]
A pair of bipartisan senators is pushing for the investigation of the Defense Department’s (DoD) “failure to secure its unclassified telephone communications from foreign espionage,” according to a letter sent Wednesday to DoD Inspector General Robert Storch. […]
The General Services Administration’s (GSA) Acquisition Policy Federal Advisory Committee (GAP FAC) held its first meeting today after tapping 14 new members and turning to new areas of focus including artificial intelligence, cloud computing, and cybersecurity. […]
More than 80 percent of the most severe tech-related vulnerabilities to critical infrastructure originate from the same 20 software components, a new report out this week from Fortress Information Security finds. […]
Cybersecurity and Infrastructure Security Agency (CISA) Deputy Director Nitin Natarajan is urging critical infrastructure sectors to “elevate the discussion” of the growing risks of legacy operational technology (OT) systems. […]
The Cybersecurity and Infrastructure Security Agency (CISA) published guidance today that provides best practices to protect against cyberattacks by Salt Typhoon – a People’s Republic of China (PRC)-affiliated threat actor that has compromised networks of major global telecommunications providers. […]