By Fiscal Year 2026, every contractor seeking to do business with the Department of Defense (DoD) will be required to have at least a Level 1 Cybersecurity Maturity Model Certification (CMMC), Katie Arrington, the Pentagon’s CISO for acquisition and sustainment, said Feb. 3. […]
The House Committee on Homeland Security today designated cybersecurity as a key priority for the committee in the 117th Congress, and specifically noted the Russian-backed hack of thousands of government and private sector networks via a compromise of SolarWinds Orion products. […]
The National Institute of Standards and Technology (NIST) has issued a Special Publication (SP) to help organizations protect sensitive information on different electronic systems from state-sponsored hacking. […]
The Defense Advanced Research Projects Agency (DARPA) announced that its first bug bounty program has “proved the value of the secure hardware architectures developed under [DARPA’s] System Security Integration Through Hardware and Firmware (SSITH) program while pinpointing critical areas to further harden defenses.” […]
Ian Wallace has joined the State Department to serve as a senior advisor for the Office of the Coordinator for Cyber Issues (S/CCI). Wallace tweeted that his new role will focus on cyber capacity building. […]
The Department of Defense’s (DoD) Defense Innovation Unit (DIU) has invested in a cybersecurity platform to upgrade their “cyber threat detection and intelligence-gathering capabilities,” according to a Jan. 25 press release. […]
The Department of State had notified Congress in 2019 of its plans to create a bureau within the department to focus on cybersecurity, but a lack of data and evidence to justify the proposal may halt its progress. […]
Sens. Maggie Hassan, D-N.H., and John Cornyn, R-Texas, reintroduced a bill that would support the National Guard in helping state and local governments improve their cybersecurity, citing “the SolarWinds attack and continued cyberattacks connected to the COVID-19 pandemic.” […]
Denis McDonough, President Biden’s nominee for secretary of the Department of Veterans Affairs (VA), plans to make cybersecurity “a key priority” if confirmed, along with IT modernization efforts and expansion of broadband services. […]
The Department of Justice (DoJ) has launched a coordinated international law enforcement action to disrupt the NetWalker ransomware-as-a-service crimeware product. […]
While the Department of Defense (DoD) is still adjudicating comments on its latest Cyber Maturity Model Certification (CMMC) guidelines, Katie Arrington, CISO for the department of Acquisition at DoD, said the department would be ready to release its first Request for Proposal (RFP) by mid-March. […]
Nine Democratic senators are pressing the Department of Justice (DoJ) and the U.S. Courts for a briefing and information about exactly what data was compromised by the SolarWinds hack in a letter to the departments. […]
The U.S Air Force (USAF) has officially designated the Department of Defense (DoD) Cyber Crime Center (DC3) as a Field Operating Agency (FOA) effective Jan. 15. […]
President Biden is asking intelligence agencies for a “full assessment” of Russian involvement in breaches of thousands of government and private-sector networks via SolarWinds Orion products, White House Press Secretary Jen Psaki said Jan. 21. […]
Department of Defense information networks (DoDIN) are working to apply a Comply-to-Connect (C2C) initiative that will boost cybersecurity across DoD with future directives by the DoD CIO addressing components of the initiative. […]
Then-President Trump signed an executive order the day before he left office to target foreign cyber threats and place new reporting obligations on cloud service providers. […]
Four lawmakers are criticizing Secretary of State Mike Pompeo’s approval of a new cybersecurity and emerging technologies bureau and calling for President-elect Joe Biden to hit pause when he is sworn in and takes office. […]
Mark Montgomery, senior advisor to the chairmen of the Cyberspace Solarium Commission that last year produced dozens of recommendations to Congress on legislative steps to improve U.S. cybersecurity, said Jan. 19 that the commission is urging Congress in 2021 to adopt a more comprehensive strategy to protect the nation’s information and communications (ICT) supply chain. […]
Ret. Army Gen. Lloyd Austin, President Joe Biden’s nominee for Defense Secretary, faced a barrage of cybersecurity questions during his Jan. 19 confirmation hearing before the Senate Armed Services Committee. […]
The costs and consequences of the Russia-backed hack of government and private sector networks via a breach of SolarWinds Orion products are continuing to grow more than a month after the exploit was publicly disclosed, a senior official with the Cybersecurity and Infrastructure Security Agency (CISA) said today. […]
Kevin Cox, Continuous Diagnostics and Mitigation (CDM) program manager, said today that he could not directly address the Russian government hack of thousands of government and private sector networks that came to light in December, but emphasized the importance of network resilience to quickly recover from intrusions and breaches. […]
The National Security Agency (NSA) issued its first Cybersecurity Year In Review report, highlighting key achievements from 2020 – including encryption work for the Pentagon – and looking ahead to threats for 2021. […]
Federal government financial regulators are seeking comment on a proposed rule looking to increase accountability for banks that experience cybersecurity incidents by implementing requirements that they report incidents to their primary regulators within 36 hours of discovery. […]
During the nine months of the coronavirus pandemic, we’ve asked a hundred variations of that question to people whose professional lives near the tip of the technology spear put them in good positions to predict the future and get as many good answers back. At the dawn of a more hopeful 2021, here’s a look at how the Federal work-scape may play out in the longer term, courtesy of three veteran technologists. […]
The Cybersecurity and Infrastructure Security Agency (CISA) late Friday issued a new alert – stemming from the Russian hack of SolarWinds Orion products – in which CISA warns it has uncovered evidence of post-hack advanced persistent threat (APT) activity in the cloud environment. […]
The Biden-Harris transition team announced 21 more appointees to the incoming administration’s National Security Council (NSC) Jan. 8, including two that are sure to play significant roles in cybersecurity policy. The transition team has tapped Tarun Chhabra as Senior Director for Technology and National Security, and Caitlin Durkovich as Senior Director of Resilience and Response. […]
In the midst of dealing with the fallout from the Russian cyberattack that used SolarWinds software to breach the networks of thousands of the firm’s customers, SolarWinds has hired former Cybersecurity and Infrastructure Security Agency Director Chris Krebs and his new cybersecurity consulting firm as an independent consultant. […]
Secretary of State Mike Pompeo approved the establishment of the Bureau of Cyberspace Security and Emerging Technologies (CSET) within the Department of State on Thursday to lead diplomatic efforts to deflect cyberattacks from foreign countries. […]
The Department of Commerce Office of the Inspector General (OIG) announced last month that it will be conducting a review of the department’s cyber threat data sharing capabilities, pursuant to the Cybersecurity Information Sharing Act of 2015 which set up structures for sharing threat data with government and private sector entities. […]
President-elect Joe Biden has chosen cybersecurity veteran Lisa Monaco as his nominee for Deputy Attorney General at the Justice Department (DoJ), and according to a Politico report, is getting ready to name Anne Neuberger deputy national security adviser for cybersecurity on the President’s National Security Council (NSC). […]