The U.S. Army aims to introduce new regulations by February – or potentially sooner – that will require comprehensive ingredient lists for nearly all newly acquired or developed software that the service branch uses. […]
The White House’s Office of the National Cyber Director (ONCD) today released its Roadmap to Enhancing Internet Routing Security, offering more than a dozen recommendations to network operators and service providers as well as the Federal government to secure the internet ecosystem. […]
The Department of Defense’s (DoD) Office of the Chief Information Officer (CIO) has named Dr. Diba Hadi as its new Principal Director of the Cyber Academic Engagement Office (CAEO). […]
Federal officials said this week that international collaboration and better sharing of actionable security guidance are needed to help meet the challenge of increasingly sophisticated cyberattacks from China and other adversaries who are making the ability to attack critical infrastructure industries part of their military strategies. […]
The Cybersecurity and Infrastructure Security Agency (CISA) added a new vulnerability to its known exploited vulnerability catalog following a warning last week from Lumen Technologies that Chinese state-sponsored threat actor Volt Typhoon is actively exploiting a zero-day vulnerability in network management platform Versa Director. […]
House Oversight and Accountability Committee Chairman James Comer, R-Ky., and Subcommittee on Cybersecurity, Information Technology, and Government Innovation Chairwoman Nancy Mace, R-S.C., are looking for answers on Federal government and U.S. citizen exposure to a possible cyberattack against National Public Data. […]
The Federal Chief Information Security Officer Council (CISO) and Chief Data Officer (CDO) Council are poised to unveil a new data security framework in the coming weeks with the aim of improving data protection across government agencies. […]
The Federal Aviation Administration (FAA) is requesting public comments after unveiling a proposal that includes cybersecurity mandates for the future manufacturing of airplanes and aviation equipment, according to a proposed rule published in the Federal Register on Wednesday. […]
State officials said this week that they are balancing centralized and decentralized distribution approaches as they try to put money from the Federal government’s State and Local Cybersecurity Grant Program (SLCGP) to work for them. […]
Reps. John Moolenaar, R-Mi., and Raja Krishnamoorthi, D-Il., urge the Commerce Department to investigate China’s TP-Link Technology Co, a leading Wi-Fi router provider in the U.S., citing potential national security risks. […]
The Department of Defense (DoD) published a proposed rule today to integrate Cybersecurity Maturity Model Certification (CMMC) requirements into the contracting process as the Pentagon moves forward with its cyber certification initiative. […]
Federal officials this week said that new phishing preventative pilot programs, quantum-resistant cryptography, and other identity authentication measures need to be further implemented and standardized across Federal agencies. […]
A new report out this week by the Federal Housing Finance Agency’s (FHFA) Office of Inspector General (OIG) found that FHFA’s network has “serious vulnerabilities that increase the likelihood that hacking attempts will succeed.” […]
The Department of Defense (DoD) is on the verge of implementing a key aspect of its Cybersecurity Maturity Model Certification (CMMC) program, following the completed review of a proposed rule that will modify the Defense Federal Acquisition Regulations. […]
A bipartisan pair of senators today announced their plan to introduce companion legislation to strengthen Federal cybersecurity by requiring government contractors to implement vulnerability disclosure policies (VDPs). […]
Sen. Charles Grassley, R-Iowa, said this week he sent letters to 15 Federal agencies – along with the FBI and the White House – demanding information about their exposure to an AT&T data breach disclosed by the company last month that includes most wireless customer call and text records from May to October 2022. […]
Following a record-breaking ransomware payout of $75 million this year, industry cloud security leaders warn that other ransomware attackers may become emboldened by other groups’ successes. […]
To highlight the one-year anniversary of the White House’s National Cyber Workforce and Education Strategy (NCWES), the Biden administration held a workshop focused on expanding opportunities for veterans to obtain good-paying cyber jobs. […]
The U.S. Senate on Thursday confirmed Michael Sulmeyer as the first-ever cyber policy chief for the Department of Defense (DoD). […]
Several U.S. government agencies including the FBI and the National Security Agency (NSA) issued an advisory today warning about a North Korean state-sponsored hacking group that they say is conducting a “global espionage campaign” aimed at advancing North Korean military and nuclear programs. […]
A group of industry cybersecurity leaders told lawmakers today that harmonizing “overlapping and inconsistent” government cybersecurity regulations would help reduce the administrative burden on their cyber workforces and free up additional resources for fighting threats. […]
The Cybersecurity and Infrastructure Security Agency (CISA) said today that Brandon Wales is stepping down as the agency’s executive director, and that Bridget Bean will take over as executive director next month. […]
Rep. Ritchie Torres, D-N.Y., is planning to introduce a bill that would codify the Department of Homeland Security’s (DHS) Cyber Safety Review Board (CSRB) following Friday’s Microsoft outage linked to the cybersecurity giant CrowdStrike. […]
Federal government operations affected by Friday’s Microsoft outage linked to the cybersecurity giant CrowdStrike appeared to recovering their footing today, including the Social Security Administration (SSA), which reopened its offices today. […]
Department of Defense (DoD) operations were unaffected by the ongoing Microsoft outage caused by a flawed CrowdStrike security update, the chairman of the Joint Chiefs of Staff said on Friday. […]
Anne Neuberger, the White House’s deputy national security advisor for cyber and emerging technologies, said that today’s CrowdStrike outage – one of the largest IT outages in history – highlights the need for a tough look at digital resilience capabilities. […]
The ongoing Microsoft outage caused through a faulty update by cybersecurity giant CrowdStrike has disrupted several Federal and state and local government (SLG) services nationwide. […]
As adversaries continue to leverage emerging technologies such as artificial intelligence to fuel their cyberattacks, cybersecurity experts today warned that a new strategic approach is needed to combat ever-evolving cyber risks. […]
A bipartisan group of senators introduced a new bill last week that would direct the Cybersecurity and Infrastructure Security Agency (CISA) to hire a special liaison to the Department of Health and Human Services (HHS) to coordinate during cybersecurity incidents. […]
A new report from the Department of Homeland Security (DHS) Office of Inspector General (OIG) says that the United States Coast Guard needs to do more to improve the cybersecurity of the Marine Transportation System (MTS) in order to better protect the U.S. supply chain. […]