A U.S. Department of Commerce Office of the Inspector General (OIG) report found that Commerce exposed sensitive data to unvetted foreign nationals through poor security program controls. […]
The Department of Defense (DoD), Federal Bureau of Investigation, and Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) detailed a North Korean hacking operation that employs even pieces of malware. […]
The National Mediation Board (NMB) has not yet fully implemented several Government Accountability Office (GAO) recommendations including those involving information privacy and information security. […]
The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) is promising state and local election officials that it will be vigilant, trustworthy, and transparency about 2020 election security in the agency’s #Protect2020 Strategic Plan. […]
While the 2020 election cycle has been officially underway for less than a month, there have already been significant technology concerns. While the most notable tech concern was the Feb. 3 Iowa Caucus, researchers at the Massachusetts Institute of Technology (MIT) raised additional concerns in a report published Feb. 13. […]
Department of Energy (DoE) Secretary Dan Brouillette announced in a Feb. 13 memo that Karen Evans will leave her post as assistant secretary for Cybersecurity, Energy Security, and Emergency Response (CESER). She will be succeeded by Alexander Gates. […]
The House Homeland Security Committee advanced the State and Local Cybersecurity Improvement Act out of committee on Feb. 12. […]
The House Science, Space, and Technology Committee approved two bills on Feb. 12 to harden the U.S. electric grid against cyberattacks. […]
Department of Homeland Security Acting CIO Beth Cappello said she is directing the move of the Cybersecurity Operations Center from the CISO Directorate to the Information Technology Operations Directorate (ITO). […]
A new Government Accountability Office (GAO) report found that the Office of Congressional Workplace Rights (OCWR) failed to incorporate cybersecurity management practices into the planning of its Secure Online Claims Reporting and Tracking E-filing System (SOCRATES) project. […]
As the 2020 Decennial Census begins its count of the U.S. population, the Census Bureau faces “significant risks” that could impact the count, including IT and cybersecurity challenges. […]
Google announced today that it is partnering with Defending Digital Campaigns (DDC), a nonprofit and nonpartisan organization that brings cybersecurity tools and resources to Federal election campaigns. […]
During today’s Senate Homeland Security Committee Hearing, both Committee Chairman Ron Johnson, R-Wis., and Cybersecurity and Infrastructure Security Agency (CISA) Director Chris Krebs agreed that CISA’s role is largely similar to the Federal Emergency Management Agency’s mandate. […]
The Cybersecurity and Infrastructure Security Agency (CISA) issued a statement today offering assurance that efforts by the Federal government and state and local authorities have resulted in installation of intrusion detection sensors on election infrastructure in all 50 states. […]
Attorney General William Barr announced today that the Department of Justice (DoJ) has indicted four members of the Chinese military for involvement in the 2017 Equifax hack, which compromised the personal data of about 150 million Americans. […]
While the Internet of Things (IoT) promises enormous potential for increasing government efficiency and the user experience, it also creates serious cybersecurity risks. All levels of government and the private sector continue to grapple with how to capitalize on its potential, while making sure the IoT ecosystem is secure and resilient against attacks. […]
As both the private and public sectors continue to move to the cloud, they must ensure that cybersecurity is at the forefront of that transition. In a report released today, Palo Alto Networks found that “vulnerabilities in the development of cloud infrastructure are creating significant security risks.” […]
Cybersecurity firm Tenable announced Jan. 4 that it has named Mark Thurmond its new chief operating officer (COO). […]
Donna Dodson, Chief Cybersecurity Advisor for the IT Laboratory at the National Institute of Standards and Technology (NIST), reflected today on the success of the agency’s cybersecurity framework and its contributions to cyber interoperability. […]
The 2020 election cycle got off to a rocky start with the Feb. 3 Iowa Caucus plagued with technical trouble, and a Feb. 3 report from McAfee only doubles down on election technology concerns. […]
An apparent series of interconnected failures surrounding the use of a key vote-tallying phone app – plus delays associated with a phone-reporting backup system – derailed the reporting of the Iowa Democratic Caucus results last night, even as more states and localities are preparing to add app technologies to some aspects of their election processes. […]
The Congressional Budget Office (CBO) said in a Jan. 31 estimate that the Harvesting American Cybersecurity Knowledge through Education (HACKED) Act of 2019 would cost $57 million to implement over the next five years. […]
The Departments of Energy (DOE), Homeland Security (DHS), and Defense (DoD) announced Feb. 3 a collaborative initiative to prepare for and respond to cyberattacks on critical energy infrastructure, in part by putting energy infrastructure threat response plans to the test. […]
In a follow-up to the Department of Defense’s (DoD) Fiscal Year 2019 audit, the Office of the Inspector General (IG) explained in a Jan. 28 report how critical financial management improvements could boost cybersecurity at the agency. […]
The Department of Defense (DoD) has released the final version of its Cybersecurity Maturity Model Certification (CMMC), which aims to certify DoD contractors’ cybersecurity practices and bolster supply chain security. […]
The General Services Administration (GSA) Office of Inspector General (OIG) reported three weaknesses in GSA’s Federal Information Security Management Act (FISMA) compliance for Fiscal Year 2019 in a report dated Dec. 5, 2019, but released on Jan. 30. […]
Federal supply chain security threats are growing, and government and industry alike are directing more attention to reducing risks. Some, including Jeff Moore, senior vice president, Sterling Computers, believe the reseller channel is particularly vulnerable and needs significantly more attention. […]
Bipartisan legislation introduced in the House Jan. 24 would require the Small Business Administration (SBA) to establish a free cybersecurity marketplace for small businesses to purchase services from security vendors. […]
In Part One of MeriTalk’s discussion with Maitland Muse, Vice President of Global Channels and Alliances at AppGuard, we discussed the ways that traditional antivirus technologies have been compromised, and how a new approach to defending agency networks is required. […]
The Department of Interior has issued an order that temporarily grounds the agency’s fleet of nonemergency drones, citing cybersecurity concerns. […]