NASA
Army DoD military Defense AI

Department of Defense cybersecurity veteran Maj. Gen. Neil Hersey has been named the new deputy commanding general for Operations at Army Cyber Command. He transitioned to the role in June, after two years as commanding general at the Army Cyber Center of Excellence in Fort Gordon, Ga., according to his bio. […]

President Biden

President Biden said today he was “optimistic” after speaking with Russian President Vladimir Putin about the United States government’s expectations for cooperation from Russia in the event of ransomware attacks that emanate from Russian territory. […]

Cybersecurity cyber

A Department of Defense (DoD) Office of Inspector General (OIG) report found that 3D printers pose a cybersecurity risk to the agency, after discovering DoD employees were not properly securing the IT systems used to develop 3D products, and were unaware the 3D printers even had IT systems that could be hacked. […]

White House national security staff took the Biden administration’s strategic thinking on ransomware prevention to the local government mayors this week, as administration advisors continued to work through a long list of policy items aimed at curbing the attacks and making them less profitable. […]

After conducting its first bug bounty program last year, the Defense Advanced Research Projects Agency (DARPA) announced that it is open sourcing the Finding Exploits to Thwart Tampering (FETT) Bug Bounty evaluation platform. […]

Cybersecurity

According to a joint advisory from the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and U.K.’s National Cyber Security Centre (NCSC), hackers from the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS) military unit – widely known as Fancy Bear or APT28 – utilized Kubernetes clusters to infiltrate targets in their global brute force campaign from mid-2019 through early 2021. […]

DHS

The SolarWinds software supply chain hack represented a seismic shift in cybersecurity awareness for public and private sector organizations. The attack, which compromised thousands of organizations, including at least nine Federal agencies – laid bare the reality that organizations may be compromised even if they don’t know it yet, and even if they are diligent about cybersecurity. […]

cybersecurity

The recent Executive Order on Improving the Nation’s Cybersecurity directs agencies to move to zero trust security architectures, in which no person or device is automatically trusted. However, many agencies were already well on their way to zero trust, said Drew Epperson, senior director of Federal engineering and chief architect for Palo Alto Networks Federal. In a new MeriTV interview, Epperson addresses the current state of zero trust in the Federal government and offers practical steps agencies can take to accelerate zero trust adoption. […]

security
Cybersecurity
CISA
supply chain risk management process automation

Sens. Gary Peters, D-Mich., and Ron Johnson, R-Wis., introduced bipartisan legislation on July 1 that would create a cyber training program for Federal employees, aimed to help protect the Federal government against cyberattacks and supply chain security vulnerabilities. […]

Cybersecurity

The Government Accountability Office (GAO), in summarized testimony prepared for a House Veterans Affairs Committee on July 1, said the Department of Veterans Affairs (VA) has made much progress in recent years to address GAO recommendations on improving cybersecurity, but still has a significant to-do list to tackle on the security front. […]

Cybersecurity

While cybersecurity has been a hot topic stateside for years, a survey from the International Telecommunication Union (ITU) finds that many national governments around the world also are increasingly engaged, with about half of them having adopted national cyber incident response plans – a figure that has risen 11 percent since 2018.  […]

Cybersecurity

Sens. Sheldon Whitehouse, D-R.I., and Steve Daines, R-Mont., have introduced a bill that would direct the Department of Homeland Security (DHS) to study the risks and benefits of allowing private organizations to respond in kind to cyberattacks. […]

security

The Cybersecurity and Infrastructure Security Agency (CISA) is developing a catalog of bad practices in cybersecurity to help critical infrastructure providers prioritize their cybersecurity responsibilities. The agency plans to keep updating the narrow list based on feedback from cybersecurity professionals. […]

CISA

After a year of high-profile cyberattacks on government and private sector infrastructure that have raised the profile of the Cybersecurity and Infrastructure Security Agency (CISA), the House Appropriations Committee is proposing a substantial funding bump for CISA in the Department of Homeland Security’s (DHS) fiscal year 2022 (FY2022) budget. […]

cybersecurity

Organizations need a cybersecurity strategy to protect both infrastructure and customer data from growing cybersecurity threats. The Cybersecurity and Infrastructure Security Agency (CISA) developed the Cyber Essentials as a guide for small businesses and local government leaders to develop an actionable understanding of where to start implementing organizational cybersecurity practices. […]

cybersecurity
Health and Human Services HHS

A report by the Government Accountability Office (GAO) found that the Department of Health and Human Services (HHS) has clearly defined roles and responsibilities for coordination with healthcare organizations to support cybersecurity efforts. However, GAO found areas where HHS could improve collaboration. […]

NIST
capitol washington dc senate house congress-min

Senators Maggie Hassan D-N.H. and John Cornyn R-Texas, have introduced the  Federal Cybersecurity Workforce Expansion Act which aims to help strengthen U.S. cyber defenses and bolster the Federal government’s cyber workforce. […]

Rob Joyce
cybersecurity
funding

What does it cost to open up a new top-level executive branch office to coordinate the government’s sprawling and ever-growing cybersecurity efforts? If you guessed $15 million, you’d be right in line with the thinking of the House Appropriations Committee, which released on June 23 the draft fiscal year 2022 Financial Services and General Government (FSGG) funding bill that includes $15 million to launch the new Office of the National Cyber Director. […]

Categories