Assessors for the new cybersecurity standard for contractors of the Department of Defense have not yet been selected, but a Department of Homeland Security official praised DoD’s efforts and said his department is looking toward their example. […]
The Congressional Budget Office (CBO) said that H.R. 5428, the Grid Modernization Research and Development Act of 2019, would cost the United States $1.2 billion over the next five years if enacted. […]
The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) released a new cyber essentials toolkit to help small businesses and Federal agencies understand and address cybersecurity risks. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is leading the call for a governmentwide vulnerability disclosure platform, with a request for proposals from agencies coming as soon as summer 2020. […]
The National Security Agency has identified Russian military cyber actors – part of the General Staff Main Intelligence Directorate’s (GRU) Main Center for Special Technologies (GTsST) – have exploited a vulnerability in Exim mail transfer agent (MTA) software since at least August 2019. […]
The Accreditation Body responsible for orchestrating the implementation of the Defense Department’s (DoD) new cybersecurity standard for contractors released two requests for information on May 27 as the organization looks to begin training assessors this summer. […]
The Government Accountability Office (GAO) made several recommendations to the Office of Management and Budget (OMB) and others to improve coordination of cybersecurity requirements among Federal agencies to protect data shared with state government agencies. […]
Federal agencies got better at fending off cyberattacks and improving their overall cybersecurity posture last year, according to the Fiscal Year 2019 Federal Information Security Modernization Act (FISMA) Annual Report to Congress. […]
Eleven GOP members of the House Science, Space, and Technology Committee have requested a briefing on a cyber alert issued by the Cybersecurity and Infrastructure Security Agency (CISA) and FBI on May 13. […]
The United Kingdom’s cybersecurity agency said this week it will review the role of China-based network equipment maker Huawei in UK-based 5G networks – a move that comes days after the United States announced it will further restrict Huawei’s access to the U.S. technology supply chain. […]
As Congress begins work on future COVID-19 relief bills, a group of bipartisan legislators wrote to House and Senate leadership urging them to include funding for state and local government (SLG) IT infrastructure in future relief bills. […]
The U.S. Census Bureau is seeking industry input on a new acquisition strategy to revamp its cybersecurity practices over the next decade, according to a May 20 request for information (RFI). […]
The Government Accountability Office (GAO) identified in a new report 168 new actions that Congress and Federal agencies could to take to improve efficiency and effectiveness across the Federal government, including two new recommendations involving information technology. […]
In a move to ward off foreign adversaries, Sens. Ron Wyden, D-Ore., Mike Rounds, R-S.D., and Rep. Anna Eshoo, D-Calif., led the charge to encrypt phone calls between the chambers to protect communications against foreign surveillance. […]
During the COVID-19 pandemic, Federal IT operations are providing a resilient fabric that enables accelerated delivery of vital services to citizens during an unprecedented public health crisis. As government IT operations reach their new steady-state and map the path to further modernization, MeriTalk is surfacing the untold stories – and lessons – of those efforts. In the latest installment of CIO Crossroads, we examine the Labor Department’s performance eight weeks into the fray. […]
Ransomware accounted for 61 percent of malware-based data breach incidents over most of 2019, according to the Verizon 2020 Data Breach Investigations Report, reflecting that financial gains are the top motivator for three-quarters of threat actors. […]
The Senate Commerce Committee advanced key pieces of IT legislation out of markup during today’s business meeting. […]
The National Institutes of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) is asking industry to demonstrate products and technical expertise to support its project entitled, 5G Cybersecurity: Preparing a Secure Evolution. […]
The final version of National Institute of Standards and Technology (NIST) Special Publication 800-207 on zero trust could be released as soon as this month, with an opportunity for industry collaboration coming this fall, a NIST official confirmed today. […]
For the estimated four billion people across the globe without Internet access – about half of Earth’s population – the race to 5G wireless services has barely begun. But the U.S. Agency for International Development (USAID) is putting people on the ground to prepare the way. […]
The Center for Security and Emerging Technology (CSET) at Georgetown University’s Walsh School of Foreign Service released a May 2020 issue brief examining artificial intelligence (AI) and machine learning (ML) from a cybersecurity perspective with a list of questions for policymakers to consider. […]
During the COVID-19 crisis, Federal agencies are vulnerable to more cyberattacks and data breaches than ever before, but agencies like the U.S. Postal Service (USPS) and Defense Information Systems Agency (DISA) are working hard to address the cybersecurity challenges. […]
Before the COVID-19 outbreak, just 40 percent of Federal and only 4 percent of State and Local government employees were authorized to telework. But since then, the Office of Management and Budget (OMB) is mandating that Federal agencies maximize telework across the nation, and many SLGs are doing the same. Embracing telework – and doing it right – is a government-wide priority. […]
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are warning research organizations studying COVID-19 that they may be susceptible to targeting and network compromise by the People’s Republic of China (PRC). […]
In a move to strengthen the United States’ cybersecurity posture, Sens. Jacky Rosen, D-Nev., Roger Wicker, R-Miss., and Cory Gardner, R-Colo., introduced the Cybersecurity Competitions to Yield Better Efforts to Research the Latest Exceptionally Advanced Problems (CYBER LEAP) Act of 2020. […]
Sorting through the plethora of rules, regulations, and laws, which apply to the cyber domain can be daunting. The United Nations has designated two groups with the task. Are you wondering how to keep up? […]
The Government Accountability Office said in a new report that it has 11 open recommendations to the Defense Department (DoD), among a total of 1,106 outstanding open recommendations to the agency. […]
While the fight regarding the JEDI cloud computing contract between Amazon Web Services (AWS) and the Pentagon drags on, AWS is partnering with the Department of Defense (DoD) in another capacity – the department’s cybersecurity standard for contractors. […]
Most businesses are not providing additional security training during the COVID-19 pandemic despite greater numbers of employees teleworking, cybersecurity services provider CrowdStrike said this week. […]
As the conversation around DevOps, DevSecOps, and Agile continue to grow in government, agencies are flush with resources to aid in the development and deployment of software products that are both modern and secure. […]