To make cybersecurity more effective in Federal healthcare, security professionals need to bring a broad swath of folks to the table to build security into technology from the beginning while still enabling the mission, said a panel of Federal chief information security officers and cybersecurity leaders at ACT-IAC’s Health Security, Privacy, and Practice Forum on April 23. […]

The Office of Management and Budget (OMB) and the CIO Council announced today the second cohort for the Federal Cyber Reskilling Academy. […]

Secretary of State Mike Pompeo said that a cyberattack could, “in certain circumstances, constitute an armed attack under Article 5 of the U.S.-Japan Security Treaty,” and that the United States would defend Japan in that circumstance. […]

Starting next week, David Forscey will join think tank Aspen Cybersecurity Group as its new managing director. […]

The Center for Long-Term Cybersecurity at the University of California-Berkeley released a report on April 15 discussing the importance of improving cybersecurity awareness in underserved populations,  which face “higher-than-average risks of being victims of cyberattacks.” […]

The Internet Society’s Online Trust Alliance (OTA) has released its 2018 Online Trust Audit and Honor Roll results of best adoption practices that build consumer confidence in the internet, and has found that U.S. government entities were the most improved with their honor roll achievement – increasing from 39 percent in 2017 to 91 percent in 2018. […]

The Pentagon’s top research arm is working to build a hack-proof voting machine by combining something brand new with something old – specifically, secure open-source hardware and software using advanced cryptography on one end, and good old paper on the other. […]

The U.S. Chamber of Commerce and FICO released their Q1 Cyber Risk Assessment Report, which found that the “level of cyber risk to the U.S. business community is holding steady.” […]

Sen. Ed Markey, D-Mass., introduced the Privacy Bill of Rights Act, a piece of “comprehensive” Federal privacy legislation on April 12. […]

The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) released a Malware Analysis Report (MAR) on Wednesday warning industry about cyberattacks from the Lazarus Group, which is widely believed to be backed by the North Korean government. […]

Despite the near constant threat of a cyberattack, 77 percent of organizations do not have a cybersecurity incident response plan that is applied consistently across their enterprise, according to a study released today from IBM Security. […]

Help could be on the way for state and local governments grappling with defending against cyber attacks, in the form of bipartisan legislation introduced in the House and Senate that would authorize the Department of Homeland Security (DHS) to operate a grant program for states looking to implement better cybersecurity and recovery measures. […]

Nearly a dozen Federal agencies and prominent tech-focused companies are joining forces to bring recent college graduates into government cybersecurity positions for two-year terms as part of the Cybersecurity Talent Initiative announced today by the Partnership for Public Service. […]

While some may question the rationale behind indicting people in countries that are unlikely to extradite to the U.S., the Federal Bureau of Investigations (FBI) sees value in the activity as one aspect in a national strategy of deterrence, said Tonya Ugoretz, deputy assistant director in the Cyber Division of the FBI. […]

Sens. Marco Rubio, R-Fla., and Chris Van Hollen, D-Md., on April 3 introduced an updated version of their Defending Elections from Threats by Establishing Redlines Act (DETER Act), which they said promises “swift and severe consequences” to Russia and other “foreign actors” if they attack U.S. political candidates, campaigns, or voting infrastructure. […]

As Tax Day approaches, Proofpoint called attention to an increase in tax-related malware and phishing campaigns in a blog post on Wednesday. […]

In a blog post Thursday, Trustwave detailed a new sextortion scam making the rounds. […]

Defense Department (DoD) officials today underscored the importance of the agency’s ongoing electronic health records (EHR) modernization efforts at a Senate Appropriations Committee Defense Subcommittee hearing on the Defense Health Program FY2020 budget request. […]

The Office of Personnel Management (OPM) will increase the authority CIOs have over direct hiring decisions, according to a post on Federal Register. […]

The Federal Bureau of Investigation’s (FBI) Cyber Guardian program, which provides cyber-attack victim notification services, is operating with “incomplete and unreliable” data, and as a result the FBI is unable to determine whether all such victims are being notified, according to a report released April 1 by the Justice Department’s Office of Inspector General. […]

The General Services Administration (GSA) announced today that it has modernized the Highly Adaptive Cybersecurity Services (HACS) Special Item Number (SIN) to include additional cybersecurity services. […]

With the U.S. decennial census set to begin gathering data in one year, the focus on new technology involved in the effort is increasing, along with security questions. The coming census has a reference date of April 1, 2020. […]

The city of Albany, N.Y., confirmed on March 30 that it was hit by a ransomware attack that affected municipal government computers. […]

The Federal Trade Commission (FTC) announced Wednesday that Office Depot agreed to pay $25 million to settle allegations that the company “tricked customers into buying millions of dollars’ worth of computer repair and technical services by deceptively claiming their software had found malware symptoms on the customers’ computers.” Support.com, Office Depots’ software supplier, agreed to pay $10 million to settle the same allegations. […]

Women make up less than a quarter of the cybersecurity workforce and while efforts are underway to boost that number, success has been limited. New America, a non-partisan think tank, released a report on Thursday detailing the current status of women in the cyber workforce, efforts to increase the number of women in the field, and steps that can be taken to improve hiring and retention across the industry. […]

In a report released Wednesday, Kaspersky Lab found that malicious activity targeting industrial control systems (ICS) impacted nearly half (47.2 percent) of all computers under its protection in 2018, up from 44 percent in 2017. […]

In the race to exascale computing, it looks like the Department of Energy (DoE) will be the first to reach the pole. In a couple of years, the department plans on opening a supercomputer, known as Aurora, capable of performing a quintillion calculations per second, five times faster than the current champ. But in addition to beating the Chinese and everyone else to the exascale summit, Aurora will be significant for incorporating artificial intelligence into its repertoire, while pursuing a range of scientific and real-world problems. […]

On Tuesday and Wednesday of this week, the European Union Agency for Law Enforcement Cooperation, better known as Europol, met with the European Cybercrime Centre Advisory Groups on Financial Services, Internet Security and Communication Providers to discuss phishing attacks and how to fight and prevent them. […]

President Trump on March 26 said he was extending by one year–to April 2020–the national emergency regarding cybersecurity threats that was declared by President Obama in 2015 under Executive Order 13694, and amended in 2016 by Executive Order 13757. […]

Congress must take action to ensure that consumer data is being adequately protected at consumer reporting agencies (CRAs), witnesses said at Tuesday’s House Committee on Oversight and Reform Subcommittee on Economic and Consumer Policy hearing. […]