The Department of Justice (DoJ) and Department of Homeland Security (DHS) have launched a one-stop shop at StopRansomware.gov for individuals, businesses, and organizations to help combat the increasing trend of ransomware attacks, the DoJ announced today. […]
Websites on the dark web associated with ransomware gang REvil disappeared on July 13, according to analysts. It is not immediately clear who is responsible for the takedowns. […]
White House national security staff took the Biden administration’s strategic thinking on ransomware prevention to the local government mayors this week, as administration advisors continued to work through a long list of policy items aimed at curbing the attacks and making them less profitable. […]
The White House and key Federal agencies have been working since July 2 to assist in the response to the Kaseya ransomware attack, as President Biden gets set to meet this week with an interagency group taking a longer look at the ransomware problem. […]
A report by the Government Accountability Office (GAO) found that the Department of Health and Human Services (HHS) has clearly defined roles and responsibilities for coordination with healthcare organizations to support cybersecurity efforts. However, GAO found areas where HHS could improve collaboration. […]
Federal chief technology officers (CTOs) are working hard on a number of big-picture policy fronts including improving cybersecurity, modernizing technology, adopting cloud computing, and improving the customer experience. […]
The Biden administration’s May Executive Order on Improving the Nation’s Cybersecurity is the latest in a series of initiatives prioritizing national cybersecurity. Agencies are newly cognizant of the fragility of current security protocols, as demonstrated by recent breaches. […]
Current and former Cybersecurity and Infrastructure Security Agency (CISA) officials agreed today that the road to implementing zero trust security concepts is long – and possibly without end – but at any rate stretches at least three years into the future in order to achieve a “good start” at getting to the goal. […]
The Government Accountability Office (GAO) found in a new report that while the Department of Defense (DoD) has taken some risk management actions to better defend its inventory management systems against cyber threats, it should take additional steps to make them more secure. […]
Sens. Mark Warner, D-Va., and Susan Collins, R-Maine, asked Secretary of Education Miguel Cardona to ensure that schools nationwide are aware that they can use Federal funding from COVID-19 relief bills to improve cybersecurity. […]
For decades, Federal chief information security officers (CISOs) focused on protecting a traditional perimeter and the users within. Today, however, they recognize that there are a seemingly endless number of third-party partners, vendors, and customer accounts, as well as service accounts – accounts which are either not directly tied to employees, or non-human accounts– which could result in compromises. […]
A secure software supply chain has become essential to fulfilling government missions. Massive cyberattacks like SolarWinds highlight the serious risks to the enterprise that insecure software can create. […]
The 14 percent year-over-year budget increase requested by the Biden administration for the Office of Management and Budget (OMB) for Fiscal Year 2022 would be devoted to hiring new career personnel across the agency, including increasing staffing that is critical for IT and cybersecurity oversight across the government. […]
Ransomware was a main focus of concern during a committee nomination hearing today for Chris Inglis to be the nation’s first-ever national cyber director. Amidst a rising number of recent attacks, Inglis detailed how he would deal with the threat of ransomware while also explaining how he would approach building the nation’s cyber policy and approach collaboration if confirmed. […]
The Senate voted late on June 8 to approve the much-amended U.S. Innovation and Competition Act of 2021, by a margin of 68-32. […]
The White House today released the first fruits of a February executive order that has Federal agencies looking at ways to improve supply chain security in several key critical infrastructure areas. […]
The Biden administration is pushing hard to help fight the rise of ransomware attacks on private industry, and the White House is taking steps on multiple fronts to work with the private sector to combat the issue. […]
A senior official with the Cybersecurity and Infrastructure Security Agency (CISA) said today the Federal government’s process of modernizing its IT systems to achieve better cybersecurity may be a decades-long process. […]
President Joe Biden and Vice President Kamala Harris submitted the President’s Fiscal Year (FY) 2022 budget request to congress which includes $715 billion of which is allocated for the Department of Defense (DoD) to bolster the Pentagon’s technological capabilities, among other objectives. […]
The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the FBI are looking into last week’s spear-phishing campaign targeting the United States Agency for International Development (USAID), and have not found any “significant impact” to Federal agencies, according to a May 28 joint statement. […]
The United States Agency for International Development (USAID) was the victim of a May 25 spear-phishing campaign that carried all the hallmarks of a state-sponsored attack, Microsoft said yesterday. […]
The recent Colonial Pipeline hack has made more people aware of the threats that lurk in cyberspace, and Sen. Angus King, I-Maine, says it’s time for the government to develop a new relationship with the private sector on cybersecurity and take an all-of-society approach to protecting critical infrastructure. “The private sector has been very reluctant […]
In light of the recent Colonial Pipeline ransomware attack, the Department of Homeland Security’s (DHS) Transportation Security Administration (TSA) released a new directive requiring all critical pipeline owners and operators to report cyberattacks, DHS announced today. […]
Reps. Ted Lieu, D-Calif., and Nancy Mace, R-S.C., led a bipartisan group of legislators in reintroducing the Ensuring National Constitutional Rights for Your Private Telecommunications (ENCRYPT) Act. […]
Federal CIO Clare Martorana today laid out her vision for civilian government-wide Federal IT improvements that match up broadly with many of the larger goals outlined in projects and spending priorities announced earlier this month for the recent $1 billion cash infusion into the Technology Modernization Fund (TMF). In her first extended public policy address […]
With the Colonial Pipeline ransomware attack adding to the count of high-profile cyberattacks to make news in the past six months, members of Congress focused in on how the United States can deter such attacks, as well as how to attract talent to the cyber workforce, at a May 14 House Armed Services subcommittee hearing. […]
Federal agency progress in implementing the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program would benefit from a kick-start from Congress in the form of more funding for the program, along with money for agencies that have to pay for the additional security capabilities on an ongoing basis. […]
Tech-sector reaction to the White House’s sweeping cybersecurity executive order issued May 12 came in largely positive today, with security technology makers particularly applauding the urgency of the administration’s plans, the enterprise-wide view that the order takes for improving security, and its actions to hasten the movement of Federal agencies to cloud services. […]
Acting Cybersecurity and Infrastructure Security Agency (CISA) Director Brandon Wales said today the government is concerned that the nation is witnessing the prelude to broader-based cyber attacks, and he called on Congress to take action on legislation that would require reporting of cyber incidents to the Federal government. […]
Increased cloud service adoption during the COVID-19 pandemic has enabled the Cybersecurity and Infrastructure Security Agency (CISA) to speed agency migration to new Continuous Diagnostic and Mitigation (CDM) Program dashboards. […]