NASA is looking for a contractor who can provide cybersecurity and privacy support for all of its centers and facilities, according to a recent request for proposals (RFP) on SAM.gov. […]
Department of Defense cybersecurity veteran Maj. Gen. Neil Hersey has been named the new deputy commanding general for Operations at Army Cyber Command. He transitioned to the role in June, after two years as commanding general at the Army Cyber Center of Excellence in Fort Gordon, Ga., according to his bio. […]
President Biden said today he was “optimistic” after speaking with Russian President Vladimir Putin about the United States government’s expectations for cooperation from Russia in the event of ransomware attacks that emanate from Russian territory. […]
A Department of Defense (DoD) Office of Inspector General (OIG) report found that 3D printers pose a cybersecurity risk to the agency, after discovering DoD employees were not properly securing the IT systems used to develop 3D products, and were unaware the 3D printers even had IT systems that could be hacked. […]
White House national security staff took the Biden administration’s strategic thinking on ransomware prevention to the local government mayors this week, as administration advisors continued to work through a long list of policy items aimed at curbing the attacks and making them less profitable. […]
After conducting its first bug bounty program last year, the Defense Advanced Research Projects Agency (DARPA) announced that it is open sourcing the Finding Exploits to Thwart Tampering (FETT) Bug Bounty evaluation platform. […]
According to a joint advisory from the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and U.K.’s National Cyber Security Centre (NCSC), hackers from the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS) military unit – widely known as Fancy Bear or APT28 – utilized Kubernetes clusters to infiltrate targets in their global brute force campaign from mid-2019 through early 2021. […]
The White House and key Federal agencies have been working since July 2 to assist in the response to the Kaseya ransomware attack, as President Biden gets set to meet this week with an interagency group taking a longer look at the ransomware problem. […]
The Department of Homeland Security (DHS) onboarded over 300 new cybersecurity employees, and made an additional 500 tentative job offers, during its 60-day Cybersecurity Workforce Sprint, exceeding the sprint’s original goal by 50 percent. […]
The SolarWinds software supply chain hack represented a seismic shift in cybersecurity awareness for public and private sector organizations. The attack, which compromised thousands of organizations, including at least nine Federal agencies – laid bare the reality that organizations may be compromised even if they don’t know it yet, and even if they are diligent about cybersecurity. […]
The recent Executive Order on Improving the Nation’s Cybersecurity directs agencies to move to zero trust security architectures, in which no person or device is automatically trusted. However, many agencies were already well on their way to zero trust, said Drew Epperson, senior director of Federal engineering and chief architect for Palo Alto Networks Federal. In a new MeriTV interview, Epperson addresses the current state of zero trust in the Federal government and offers practical steps agencies can take to accelerate zero trust adoption. […]
In light of recent cyberattacks against Federal agencies, the Department of Defense (DoD) is increasing its requirements for private sector contractors to ensure they are adequately securing and protecting contractor and DoD data. […]
Jen Easterly will be confirmed as the next director of the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) when the Senate reconvenes on July 12, according to Sen. Angus King, I-Maine. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released a request for information (RFI) to identify potential vendors to support the secure and reliable operation of the dot-gov top-level domain (TLD). […]
Sens. Gary Peters, D-Mich., and Ron Johnson, R-Wis., introduced bipartisan legislation on July 1 that would create a cyber training program for Federal employees, aimed to help protect the Federal government against cyberattacks and supply chain security vulnerabilities. […]
The United States remains the global leader in cyber capabilities, retaining its “clear superiority” over other nations, but China may soon leave the “second-tier” of cyber power with its growing digital infrastructure, according to a new report. […]
The Government Accountability Office (GAO), in summarized testimony prepared for a House Veterans Affairs Committee on July 1, said the Department of Veterans Affairs (VA) has made much progress in recent years to address GAO recommendations on improving cybersecurity, but still has a significant to-do list to tackle on the security front. […]
While cybersecurity has been a hot topic stateside for years, a survey from the International Telecommunication Union (ITU) finds that many national governments around the world also are increasingly engaged, with about half of them having adopted national cyber incident response plans – a figure that has risen 11 percent since 2018. […]
Sens. Sheldon Whitehouse, D-R.I., and Steve Daines, R-Mont., have introduced a bill that would direct the Department of Homeland Security (DHS) to study the risks and benefits of allowing private organizations to respond in kind to cyberattacks. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is developing a catalog of bad practices in cybersecurity to help critical infrastructure providers prioritize their cybersecurity responsibilities. The agency plans to keep updating the narrow list based on feedback from cybersecurity professionals. […]
After a year of high-profile cyberattacks on government and private sector infrastructure that have raised the profile of the Cybersecurity and Infrastructure Security Agency (CISA), the House Appropriations Committee is proposing a substantial funding bump for CISA in the Department of Homeland Security’s (DHS) fiscal year 2022 (FY2022) budget. […]
Organizations need a cybersecurity strategy to protect both infrastructure and customer data from growing cybersecurity threats. The Cybersecurity and Infrastructure Security Agency (CISA) developed the Cyber Essentials as a guide for small businesses and local government leaders to develop an actionable understanding of where to start implementing organizational cybersecurity practices. […]
The House Oversight and Reform Committee today approved by voice vote the Federal Rotational Cyber Workforce Program Act, along with other important bills, which will now head to the full House for consideration. […]
A report by the Government Accountability Office (GAO) found that the Department of Health and Human Services (HHS) has clearly defined roles and responsibilities for coordination with healthcare organizations to support cybersecurity efforts. However, GAO found areas where HHS could improve collaboration. […]
The National Institute of Standards and Technology (NIST) has released an updated definition for “critical software” in response to a directive to do so in the Biden administration’s executive order (EO) on cybersecurity. […]
Senators Maggie Hassan D-N.H. and John Cornyn R-Texas, have introduced the Federal Cybersecurity Workforce Expansion Act which aims to help strengthen U.S. cyber defenses and bolster the Federal government’s cyber workforce. […]
As cyberattacks become more frequent and prevalent, the National Security Agency’s (NSA) Director of Cybersecurity Rob Joyce says the biggest vulnerability for both the private and public sectors is technical debt. […]
Cybersecurity experts from Federal, state, and local governments agree that in wake of increased cyberattacks during the COVID-19 pandemic, it’s increasingly important to protect healthcare data through an elevated cybersecurity posture. […]
The House Appropriations Committee released a draft of the fiscal year (FY) 2022 Financial Services and General Government funding bill, to be considered by a subcommittee on June 25. […]
What does it cost to open up a new top-level executive branch office to coordinate the government’s sprawling and ever-growing cybersecurity efforts? If you guessed $15 million, you’d be right in line with the thinking of the House Appropriations Committee, which released on June 23 the draft fiscal year 2022 Financial Services and General Government (FSGG) funding bill that includes $15 million to launch the new Office of the National Cyber Director. […]