The Office of Management and Budget (OMB) said today that cybersecurity-related spending is due to rise by five percent in FY2020 on a government-wide basis under President Trump’s FY2020 budget proposal. […]
The Office of Inspector General (OIG) Export-Import Bank ((EXIM Bank) of the United States released KPMG’s independent audit report on EXIM Bank’s information security program for FY2018 on March 13. In the report, KPMG, a public accounting firm, provided 14 recommendations that “should strengthen…EXIM’s information security program.” […]
D.C. Metro is planning to hack cybersecurity systems over the next few months, but not to worry–they’re hacking their own 7000 Series railcars to determine whether missing cybersecurity measures in the railcar contract left Metro data exposed. […]
Officials from various Federal agencies are focusing on data-driven approaches, utilizing blockchain, and business-focused functions to brace for a digital future. […]
The Cyber Diplomacy Act, H.R. 739, was scored by the Congressional Budget Office (CBO) on Wednesday and the CBO found it would not have a material impact on government spending. […]
Two members of the House Armed Services Committee said at a hearing on Wednesday they support continuation of the “dual-hat” command structure which finds Gen. Paul Nakasone heading both U.S. Cyber Command and the National Security Agency. […]
Sens. Ron Wyden, D-Ore., and Tom Cotton, R-Ark., asked the Senate Sergeant at Arms in a March 13 letter to disclose to each member of the Senate “the extent of the cyber threats faced by the U.S. Senate–and by extension, our democracy,” and said disclosure of that information was “imperative in order to help the U.S. Senate address important cyber-security needs.” […]
The Director of National Intelligence has announced the appointment of Erin Joe as director of the Cyber Threat Intelligence Integration Center (CTIIC), which as its name suggests integrates cyber threat data from government and other sources, facilitates threat-data sharing and supports government interagency planning of responses to adversaries. […]
The Cybersecurity Skills Integration Act introduced in the House last week to jumpstart development of career and technical education training initiatives that incorporate cybersecurity into the curriculum–appears to have one major unresolved issue: competing for qualified instructors in the white-hot market for cybersecurity professionals. […]
Christopher Krebs, director of the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security, provided an update to Congress today about how CISA is working to secure election infrastructure ahead of the 2020 Presidential election. […]
John Legere, CEO at T-Mobile U.S., told members of the House Energy and Commerce Committee’s Communications and Technology Subcommittee at a hearing on Tuesday that the carrier does not use equipment provided by China-based Huawei or ZTE in its network, and pledged to “never” use gear from the two Chinese firm in T-Mobile’s 5G network. […]
The IoT Cybersecurity Improvement Act of 2019 has gained 12 new cosponsors in the House. […]
Successfully implementing DevOps methodology requires a maturation process and cultural shift for organizations, experts from the Office of Management and Budget (OMB), Internal Revenue Service (IRS), and Department of Homeland Security (DHS) advised today. […]
The National Security Agency (NSA) and the Trusted Computing Group (TCG) industry consortium have come up with validation software that can be used with any device and could go a long way to securing the supply chain for computing devices. […]
Michigan Attorney General Dana Nessel warned Michiganders today that the information of 600,000 of the state’s citizens may have been compromised in a ransomware-caused data breach. […]
Rep. Brian Fitzpatrick , R-Pa., on March 7 introduced H.R. 1612, dubbed the “Nonpartisan Bill For The People.” The legislation is the GOP’s answer to the Democrat-backed H.R. 1, which cleared the House last week. Both bills include measures to increase voter participation and election security, among other election-related measures. The House bill does not currently have a companion bill in the Senate. The GOP-backed House bill includes measures to: […]
Jackson County, Ga., paid cybercriminals $400,000 to remove ransomware that infected its IT systems. The ransomware, known as Ryuk Ransomware, hit the county on March 1 and impacted multiple county agencies, including the Sheriff’s Office. […]
Government-wide security clearance processes, and the half million-plus backlog in the clearance applications pipeline, made the Government Accountability Office’s (GAO) High-Risk report last week as a contributing factor to the larger problem of ensuring IT security, generally. […]
Even though the broad category of U.S. cybersecurity has spent more than ten years on the Government Accountability Office’s (GAO) High-Risk List, it appears there’s still plenty of work to be done in improving cyber defense, according to GAO’s update to the list issued earlier this week. […]
The House passed the For the People Act, or H.R. 1, on Friday with a party-line vote of 234-193. […]
Software-maker trade group BSA sent a letter to leaders of the House and Senate Armed Services Committees on Thursday urging modernization of the Department of Defense’s (DoD) supply chain security and software acquisition approach in the FY 2020 National Defense Authorization Act. […]
Sens. Ron Wyden, D-Ore, Martin Heinrich, D-N.M., and Kamala Harris, D-Calif., wrote Dan Coats, director of National Intelligence, on Monday urging him to declassify information regarding China’s attempts to influence U.S. elections. […]
In a survey released today, Tripwire found that security professionals believe their teams are understaffed and that skilled cybersecurity workers are harder to find. […]
The Cybersecurity Tech Accord announced yesterday that it has added 11 new companies to its pledge, bringing its total to 90 signatories. AnchorFree, Domain Tools, Flowmon Networks, MarkMonitor, NTT, Paladion, Percipiet.ai, Silent Breach, Tanium, Telecom Italia, and Unisys all signed on and pledged to “defend customers everywhere from malicious attacks by cybercriminal enterprises and nation-states.” […]
As mobile security threats continue to grow, an increasing share of companies are knowingly and willingly sacrificing security for profit and expediency, according to Verizon’s 2019 Mobile Security Index. […]
In a letter dated Feb. 27, Sens. Mark Warner, D-Va., and Marco Rubio, R-Fla., requested Dan Coats, director of National Intelligence, produce “an unclassified report on the participation of China and other adversarial nations in the international standard setting bodies (ISSBs) for fifth-generation wireless telecommunications technologies (5G).” […]
The United States Transportation Command (USTRANSCOM) is working to improve cybersecurity infrastructures to prevent breaches of industry partners, like those of USTRANSCOM contractors that began June 1, 2012 and resulted in 20 successful intrusions over a period of 12 months by Chinese hackers. […]
A survey released today by IT management software firm SolarWinds finds that Federal IT professionals view unintentional insider threat as the most significant source of security threats. […]
Information systems trade group ISACA released results of a survey today that finds 70 percent of cybersecurity managers and practitioners believe that their organizations’ cybersecurity teams are understaffed. […]
The Congressional Budget Office (CBO), in a report released Friday, pegged the cost of H.R. 1–the For the People Act of 2019–at $2.6 billion over the next five years, with $1.5 billion of that going for states and counties to purchase new voting technology. […]