The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), in partnership with the National Cyber Security Alliance (NCSA), announced on Aug. 14 the release of the 2019 National Cybersecurity Awareness Month (NCSAM) Toolkit. […]
Tags
Cybersecurity
A cyber threat landscape report released today found that the shifting cyber landscape has led threat actors to adjust operations strategically, operationally, and technically. […]
Despite a downtick in number of states using paperless voting equipment since 2016, eight states are still expected to use paperless machines in the 2020 election, according to an Aug. 13 Brennan Center for Justice report. […]
While the Continuous Diagnostics and Mitigation (CDM) program is here to stay for Federal agencies, taking proper approaches to data classification, collection, and analysis are key components to optimizing the program’s aims, security experts said last week at MeriTalk’s Cyber Security Brainstorm event. […]
The Department of Homeland Security (DHS) is putting together a single contract vehicle that will award multiple vendors to manage DHS’ 17 unclassified security operations centers (SOCs). […]
FBI Cyber Readiness, Outreach, and Intelligence Branch Deputy Assistant Director Tonya Ugoretz stressed at today’s MeriTalk Cyber Security Brainstorm that robust and resilient Federal cybersecurity requires collaboration across agencies and non-government partners. […]
Federal agency approaches to identity management don’t have a single approach across the government, but vary to significant degrees with agencies’ mission focus, said LaChelle LeVan, Acting Director for Federal Identity, Credential and Access Management (ICAM) Program Office at the General Services Administration (GSA). […]
Officials from the Defense Department (DoD) highlighted supply chain and workforce and culture issues as two significant problems the agency faces in maintaining strong cybersecurity, during a panel discussion at FCW’s Cybersecurity Summit. […]
Embassy Nassau, the American embassy to the Bahamas, has IT issues that are largely a result of embassy understaffing, according to an August 5 report from the State Department’s Inspector General. […]
An August 5 alert issued by Microsoft’s Security Response Center is blowing the whistle on hacking efforts focused on three classes of internet of things (IoT) devices that Microsoft asserts are being attacked by the hacking group it identifies as “Strontium,” better known as the Russia-based cyber espionage group Fancy Bear. […]
The National Institute for Standards and Technology (NIST) released a draft interagency report to establish a core baseline guide for cybersecurity that manufacturers may adopt for Internet of Things (IoT) devices they produce. […]
Senators and Federal representatives spoke about the challenges of and potential solutions to issues in Federal hiring – including in cybersecurity and IT – at a Senate Homeland Security Regulatory Affairs and Federal Management Subcommittee hearing today. […]
A new survey from the Internet Innovation Alliance (IIA) finds that data privacy and security concerns are generally shared across generations, with broad support for a national privacy law. […]
An inspector general (IG) for the Department of Defense (DoD) found internal control weaknesses relating to contractors installing cybersecurity controls that protect networks and systems containing DoD controlled unclassified information (CUI). […]
Most government agencies have met Federal mandates to establish cyber risk executives and establish policies to make risk-based decisions on cybersecurity, but many agencies still need to establish cyber risk strategies, conduct risk assessments, and address gaps in existing risk management policies, according to a Government Accountability Office (GAO) report released July 26. […]
Advancements in encryption technology could be making us less safe, Attorney General William Barr said at the International Conference on Cybersecurity today. […]
The Government Accountability Office (GAO) uncovered a list of new information system security weaknesses at the IRS in a report released July 18. […]
Balancing cybersecurity with modernization – as well as strategies that organically create that balance – are critical as Federal agencies work toward modernizing their IT infrastructures, said Jeanette Manfra, assistant director for the Cybersecurity and Infrastructure Security Agency (CISA), today. […]
The $380 million of Federal funds currently allocated to election security is not sufficient, and additional Federal support will be needed to secure the 2020 election, according to a new report from four nonprofit organizations. […]
Energy Department (DoE) officials and energy-sector security experts briefed House members today on a range of cybersecurity initiatives and other tech advancements they could consider as Congress works to create electric grid modernization legislation. […]
Six Republican House members earlier this month introduced the Securing American Research from Cyber Theft Act (H.R. 3611), which would fund pilot projects to establish secure computing enclaves at universities to protect research from cyberattacks. […]
The Environmental Protection Agency’s (EPA) Office of Inspector General has flagged cybersecurity and data management issues as top management challenges for the agency in FY2019 that need to be tackled. […]
A team of academics and experts published a July 10 blueprint that acts as a template to help communities become “smart cities” by adopting a secure hybrid cloud architecture. […]
A recent Associated Press analysis found that the majority of election jurisdictions in the U.S. employ aging technologies that could end up being vulnerable to cyberattacks. […]
The inspector general for the National Railroad Passenger Corporation, better known as Amtrak, found cyber vulnerabilities in an audit, as noted in a summarized public version of the report released July 9. […]
The Energy Department (DoE) is making strides in its unclassified cybersecurity program, according to a DoE Inspector General (IG) semiannual report released today. […]
Cyber tech provider Proofpoint said a recent security awareness audit of employees that undertake security training concludes that people are only hitting on the right answers 78 percent of the time. […]
Small businesses are more likely to lack resources to build robust cybersecurity capabilities, but Sens. Gary Peters, D-Mich., and Marco Rubio, R-Fla., are looking to address that challenge with their recently introduced Small Business Cybersecurity Assistance Act. […]
Small healthcare providers are less likely to implement cybersecurity policies than larger healthcare organizations, a new CHIME and KLAS white paper found. […]
According to security researchers Chase Dardaman and Jason Wheeler, three security flaws in Zipato smart hubs can be used to unlock doors equipped with smart locks if the flaws are chained together. […]