The latest cyber order released by the Cybersecurity and Infrastructure Security Agency (CISA) gives Federal agencies and industry the resources to stop or limit cybercriminals from infiltrating their systems; Michael Duffy, an associate director at CISA, said.
Although encryption technologies currently work to prevent malicious adversaries from accessing Federal data, Rep. Ro Khanna, D-Calif., is working on legislation that would tackle future quantum computing challenges through the use of algorithms that employ post-quantum cryptography.
The FBI has released a public service announcement (PSA) to warm the public about cybercriminals using Quick Response (QR) codes to steal financial information.
The Department of Housing and Urban Development (HUD) has been using funds from the Community Development Block Grant Disaster Recovery (CDBG-DR) fund since 1993, but according to a new report from the Government Accountability Office (GAO), the agency could generate better data to deliver those funds to vulnerable populations in an equitable fashion.
The Cybersecurity and Infrastructure Security Agency (CISA) released the finalized ‘IPv6 Considerations for TIC 3.0’ guidance document today, providing security considerations related to implementing the Trusted Internet Connections (TIC) 3.0 as Federal agencies transition to IPv6.
In this new year, agencies continue to embark on digital transformation journeys, modernizing IT applications and infrastructure. Federal technology leaders discussed their agency’s 2022 digital transformation plans and goals at ATARC’s Digital Transformation Summit on Jan. 18.
President Biden today signed a National Security Memorandum (NSM) intended to improve the cybersecurity of National Security, Department of Defense (DoD), and Intelligence Community (IC) Systems.
The Office of the National Coordinator for Health IT (ONC) completed a framework to allow electronic health information to be more easily shared among providers and individuals called the Trusted Exchange Framework and Common Agreement (TEFCA).
The House Committee on Science, Space, and Technology favorably reported several bills to the full House today, including H.R. 847—the Promoting Digital Privacy Technologies Act.
Ninety-eight percent of public sector leaders have felt a shift in momentum toward digital transformation in the last two years, with 60 percent calling that shift “significant.” But despite this momentum, 88 percent said they also face roadblocks that stifle progress toward digital transformation initiatives.
The increased velocity of major cyber attacks on U.S. government and private sector targets is giving increased urgency to the adoption of cyber incident reporting rules that will improve the government’s ability to identify and defeat them, said Tonya Ugoretz, Deputy Assistant Director for the Cyber Readiness, Outreach, and Intelligence Branch at the Federal Bureau of Investigation.
vThe Government Accountability Office (GAO) recently reviewed five financial regulators to understand their systems for protecting personally identifiable information (PII)— which can be shared with Federal agencies, law enforcement, and contractors— and found room for improvement in certain areas.
General Dynamics Information Technology (GDIT) President Amy Gilliland talked about the vital role that system integrators play for Federal agencies, along with growing agency appetite for zero trust security technologies, during an address to the Northern Virginia Technology Council (NVTC) on Jan. 14.
Reps. Yvette Clarke, D-N.Y., and Ritchie Torres, D-N.Y., are seeking more information on efforts by the Cybersecurity and Infrastructure Security Agency (CISA) efforts to reduce security risks to Federal networks through the use of multi-factor authentication (MFA).
After a surprising failure to get mandatory cyber incident reporting included in the fiscal year (FY) 2022 National Defense Authorization Act (NDAA), Rep. Yvette Clarke, D-N.Y., and John Katko, R-N.Y., called the issue a top cybersecurity legislative priority for 2022.
The Senate this week approved bipartisan legislation that would create a cyber training program for Federal employees, aimed to help protect the Federal government against cyberattacks and supply chain security vulnerabilities.
As Federal agencies look to further adoption of artificial intelligence (AI) technologies, experts both in government and industry are stressing the importance of making sure AI is mission-integrated, and that agencies are moving towards a more distributed AI approach.
The Department of Defense (DoD) has launched the DoD University Consortium for Cybersecurity (UC2) to better facilitate communication between the Secretary of Defense and academia, and fulfilling a requirement from the 2020 National Defense Authorization Act, DoD announced Jan. 10.
Kenneth Wainstein, the Biden administration’s nominee to become undersecretary for Intelligence and Analysis (I&A) at the Department of Homeland Security (DHS), fielded questions on several tech-related issues from members of the Senate Intelligence Committee at a Jan. 12 committee hearing to consider his nomination.
The Department of Energy (DoE) announced plans to upgrade the U.S. electricity grid with a major aim of helping to protect vital energy infrastructure against supply disruptions caused by environmental, physical, and cyberattacks, and to minimize the impact of supply disruptions.
The Senate this week approved legislation sponsored by Sens. Gary Peters, D-Mich., and Rob Portman, R-Ohio, which would promote stronger cybersecurity coordination between the Department of Homeland Security (DHS) and state and local governments.
Improving cybersecurity has become the key to better protecting critical infrastructure and meeting mission needs within the government space, but according to an official from the Government Accountability Office (GAO), Federal agencies still have a long way to go to be cyber-ready.
Department of Defense (DoD) components have successfully monitored and managed four contracts and one cooperative agreement for the Algorithmic Warfare Cross-Functional Team (AWCFT) – otherwise known as Project Maven – but the team failed to document its approach to monitoring metrics, processes, and procedures.
Officials from the Cybersecurity and Infrastructure Security Agency (CISA) and within the cybersecurity industry are warning of the potential for threat actors to have already exploited the Log4j vulnerability, but are waiting to pull the trigger on any planned exploits until focus on the vulnerability abates.