The Cybersecurity and Infrastructure Agency (CISA) sent out an alert warning of an email phishing scam that is attempting to trick users into opening attachments that are designed to look like Department of Homeland Security notifications. […]
Sens. Cory Gardner, R-Colo., and Ed Markey, D-Mass., introduced the Hack Your State Department Act on June 12. […]
A panel of witnesses explained to senators the challenges and potential solutions for securely using and regulating unmanned aircraft systems (UAS) or drones at a June 18 Senate Commerce, Science, and Transportation Committee Security Subcommittee hearing. […]
The House Appropriations Committee released a second of five appropriations minibus FY2020 spending bills for Commerce-Justice-Science, Agriculture-Rural Development-FDA, Interior-Environment, Military Construction-Veterans Affairs, and Transportation-Housing and Urban Development. […]
A new zero-day flaw has been discovered in a TP-Link Wi-Fi extender, according to an IBM blog post published today. […]
As of April, 209,000 Americans have volunteered to provide their personal health data for the National Institutes of Health (NIH) All of Us Research Program to build a national research cohort of over 1 million participants that will help drive the Precision Medicine Initiative. But those participants may have placed their data at risk. […]
The worsening worldwide shortage of skilled cybersecurity professionals is shaping up to be a key driver to cloud-delivered security services, explained Peter Firstbrook, a VP analyst with Gartner, at the company’s Security and Risk Management Summit on June 17. […]
The Defense Department (DoD) Office of Under Secretary Acquisition of Sustainment is creating a new certification model to streamline DoD’s cybersecurity acquisition processes, Special Assistant to DoD’s Assistant Secretary of Defense Acquisition for Cyber Katie Arrington said at the Professional Services Council Federal Acquisition Conference today. […]
Today, Reps. Jim Himes, D-Conn., and John Ratcliffe, R-Texas introduced new legislation that would establish election interference as a Federal crime. The bipartisan bill, dubbed the Defending the Integrity of Voting Systems Act, would make it a Federal crime to hack a voting system used in a Federal election. […]
New research suggests that over the past five years, 33 percent of cybersecurity data breaches could have been prevented with Domain Name System (DNS) firewalls. […]
The latest survey by Unisys of consumer security concerns found that Americans are more alarmed about the possibility of identity theft and bankcard fraud than they are about national security in general. […]
The FBI’s Internet Crime Complaint Center (IC3) says that more and more cyber criminals are capitalizing on website visitor trust in phishing campaigns. […]
The House Appropriations Committee Homeland Security Subcommittee allocated $63.8 billion in its draft of the FY2020 Department of Homeland Security (DHS) budget, including increased funding to efforts to bolster cybersecurity, election security, and new IT and border security technologies. […]
Most industries are still vulnerable to fake emails and email addresses despite using Domain-based message Authentication, Reporting & Conformance (DMARC) protocols. […]
Cybersecurity professionals polled indicated that the most prevalent types of threat actors and attack vectors of recent years will remain consistent but increase in attack volume in 2019. […]
The Congressional Budget Office (CBO) estimated on June 7 that H.R.1648, the Small Business Advanced Cybersecurity Enhancements Act of 2019, will cost about $2 million annually to implement, and $11 million in total between 2019 and 2024, if the bill is enacted. […]
As the reality of cyber threats and data breaches becomes closer to normal life for private and public sector organizations, a Nominet report finds that while executives know cyber risks are high, they still lack resources and accountability for handling breaches and information security. […]
Sen. Ron Wyden, D-Ore., requested information on how the Department of Justice (DoJ) is securing its offensive cyber tools in a June 5 letter to Attorney General William Barr. […]
A recent Office of the Inspector General (OIG) report for the U.S. Nuclear Regulatory Commission (NRC) found that although the NRC had sufficient protection of digital computers, communication systems, and networks associated with safety, security, and emergency preparedness, the commission’s cybersecurity inspection program is facing future staffing issues that will affect its ability to mitigate cyber risks. […]
The identity, credential, and access management policy recently released by the Office of Management and Budget (OMB) mostly keeps existing policy in place, but sets a framework for faster policy evolutions and acknowledges the need for protections within the perimeter, said Sean Frazier, advisory CISO at Duo Security. […]
Federal Chief Information Security Officer (CISO) Grant Schneider said today that the Office of Management and Budget (OMB) is continually working towards developing standards and accountability for supply chain security and cybersecurity. […]
The Office of Inspector General of the Intelligence Community (ICIG) raised concerns over oversight of artificial intelligence (AI) initiatives and how inspectors general can keep up with the pace of technology in the ICIG semiannual report to Congress, publicly released today. […]
An inspector general (IG) report publicly released this week identified weaknesses in the Federal Deposit Insurance Corporation’s (FDIC’s) network firewalls and security information and event management (SIEM) tools. […]
The Association for Computing Machinery asked the U.S. Election Assistance Commission (EAC) to adopt policy that disallows internet connections to voting equipment. […]
Maj. Gen. Mary O’Brien was nominated by President Donald Trump to become deputy chief of staff for intelligence, surveillance, and reconnaissance (ISR) for Cyber Effects Operations at the U.S. Air Force headquarters. […]
The Environmental Protection Agency (EPA) has failed to monitor plans of action and milestones (POA&Ms) for cybersecurity weaknesses as required by EPA policy, the agency’s Inspector General (IG) said. […]
For the first time, Moody’s has downgraded a company’s credit rating because of a cyberattack. […]
The Congressional Budget Office (CBO) released its cost estimate for the Small Business Administration (SBA) Cyber Awareness Act, H.R. 2331 and S. 772, on May 20, and said the bill would cost nothing to implement. […]
The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) published a list of best practices for securing election systems on May 21. […]
The Defense Security Service has awarded a $75 million contract to Perspecta through an other transaction agreement (OTA) that will work to add advanced AI to backend systems and modernize the vetting processes of security clearance personnel for the National Background Investigation Service (NBIS). […]