The Departments of State, Homeland Security, Treasury, and the Federal Bureau of Investigations are raising awareness of the cyberthreat posed by North Korea (DPRK) and reminding the public to stay vigilant. […]
Tags
Cybersecurity
Over 1,000 files on cyberattacks collected by security provider CrowdStrike in March mentioned the COVID-19 coronavirus, and Adam Meyers, the company’s VP of Intelligence, said the trend will only continue through April. […]
Under the National Initiative for Cybersecurity Education (NICE), the National Institute of Standards and Technology (NIST) has provided links to free and low-cost online cybersecurity educational content. […]
Robert Carey, VP/GM Global Public Sector Solutions at RSA Security, has rightly earned the ability to take the long view of large-scale technology deployments across both the private and public sectors. He’s six years into a second private-sector career with previous stops at GDIT and Vencore since capping off an eight-year run as CIO of the Department of the Navy, and then Principal Deputy CIO at the Department of Defense. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released interim Trusted Internet Connections (TIC) 3.0 guidance today focused on the rapid transition to telework as Federal agencies adjust their operations to combat spread of the COVID-19 coronavirus. […]
The Small Business Administration (SBA) is in the process of notifying small business applicants impacted by an exposure of personally identifiable information (PII) in connection with their its Economic Injury Disaster Loan applications. […]
FBI Issues PSA on Cyber Threats due to COVID-19 According to a Public Service Announcement (PSA) by the FBI, cyber threat actors are attempting to take advantage of the COVID-19 pandemic by exploiting virtual environments. “As of March 30, the FBI’s Internet Crime Complaint Center (IC3) has received and reviewed more than 1,200 complaints related […]
Here’s an overview of some of the latest COVID-19 coronavirus developments on the government and tech fronts: […]
Sean Frazier, advisory CISO at Duo Security, carries an earlier cloud industry pedigree than most, and as such a long historical view of the sector’s ever-increasing influence on the technology capabilities of industry and government. […]
An IT system, which provides critical information to the President, Secretary of Defense, and other military leaders, received only a little more than half of the required security controls at seven sites, a Department of Defense Inspector General report shows. […]
The National Institute of Standards and Technology (NIST) released a bulletin note from the Information Technology Laboratory (ITL) on cybersecurity risks increasing with remotely accessible telework networks. […]
Rep. Mike Gallagher, R-Wis., a member of the Cyberspace Solarium Commission that is set to release recommendations March 11 on how to better defend the U.S. against cyber threats, said today the commission hopes to spark quick action by Congress on at least some of those recommendations. […]
Federal agencies are significantly better than private sector organizations at enforcing domain-based message authentication, reporting, and conformance (DMARC) standards to combat email domain spoofing, according to a new report from anti-phishing company Valimail. […]
The National Institute of Standards and Technology (NIST) is seeking comments through May 4 on a draft revision of NISTIR 8183, the Cybersecurity Framework Manufacturing Profile, that includes subcategory enhancements established in the agency’s Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1. […]
Jim Sullivan, defense intelligence officer (DIO) for cyber at the Defense Intelligence Agency (DIA), emphasized the value of offensive operations in cyberspace to deter nation-state attackers during a panel discussion this week at the RSA security conference in San Francisco. […]
Three members of the Cyberspace Solarium Commission (CSC) on Feb. 25 hinted at several themes of the group’s upcoming recommendations for U.S. cybersecurity doctrine and policy that is due for public release on March 11. Central to the report’s conclusions will be a rethinking of cyber deterrence strategies, and greater coordination between the Federal government’s several agencies that focus on cyber defense, they indicated. […]
The National Institute for Standards and Technology (NIST) released a report outlining best practices in building the cybersecurity workforce through regional partnerships. […]
Members of the Senate Armed Services Committee investigated the cybersecurity of contractors working with the United States Transportation Command during a hearing Tuesday. […]
Since 2014, the beginning of CIO Joseph Klimavicz’s tenure, the Department of Justice (DoJ) has achieved $600 million in IT cost avoidance, reduced cyber risk by 70 percent, and streamlined its 23 email systems into one cloud-based solution. […]
In a recent report about 2020 Democratic presidential candidates’ cybersecurity posture, each of the campaigns scored a “B” letter grade or better, and showed increased focus and investment in good cyber hygiene. […]
The U.S. Navy Cyber Warfare Development Group (NCWDG) announced the opening of the Cyber Foundry at Fort Meade, Md., on Feb. 18. […]
A new Government Accountability Office (GAO) report found that the Office of Congressional Workplace Rights (OCWR) failed to incorporate cybersecurity management practices into the planning of its Secure Online Claims Reporting and Tracking E-filing System (SOCRATES) project. […]
The Departments of Energy (DOE), Homeland Security (DHS), and Defense (DoD) announced Feb. 3 a collaborative initiative to prepare for and respond to cyberattacks on critical energy infrastructure, in part by putting energy infrastructure threat response plans to the test. […]
In a follow-up to the Department of Defense’s (DoD) Fiscal Year 2019 audit, the Office of the Inspector General (IG) explained in a Jan. 28 report how critical financial management improvements could boost cybersecurity at the agency. […]
The General Services Administration (GSA) Office of Inspector General (OIG) reported three weaknesses in GSA’s Federal Information Security Management Act (FISMA) compliance for Fiscal Year 2019 in a report dated Dec. 5, 2019, but released on Jan. 30. […]
The Social Security Administration (SSA) announced its intent to acquire a role-based cybersecurity training platform for employees in a Jan. 23 solicitation. […]
The Department of Defense (DoD) is seeking out commercial solutions to its inventory management system in order to improve its patch management methodology, according to a Jan. 15 solicitation. […]
Proactive work by Federal agencies on cybersecurity – with a particular focus on workforce, innovation, and data management – is a key factor in agency success in protecting patient data from security threats, Federal officials said on Jan. 16. […]
Industry leaders shared their predictions for 2020 and beyond with MeriTalk, indicating the path to progress will often track uphill, and around plenty of curves. […]
Sens. Gary Peters, D-Mich., and Rick Scott, R-Fla., have introduced a bill in the Senate that would establish a K-12 cybersecurity education initiative. […]