The Office of Management and Budget (OMB) and the White House’s Office of the National Cyber Director (ONCD) are giving Federal agencies their marching orders on cybersecurity priorities as they work on fiscal year (FY) 2025 budgets, with an emphasis on tying in the five pillars of the National Cybersecurity Strategy (NCS) released by ONCD in March. […]
Ransomware attacks tracked by cloud security provider Zscaler rose by 37 percent on a year-over-year basis through April 2023, the company said in a new report issued today. […]
The Cybersecurity and Infrastructure Security Agency (CISA) plans to release a training program to help Federal agencies better understand and operationalize cyber supply chain risk management (C-SCRM), CISA’s C-SCRM Project Management Office Lead said today. […]
The General Services Administration (GSA) has issued a Request for Information (RFI) on behalf of the Cybersecurity and Infrastructure Security Agency (CISA), which is seeking technical input from industry on detecting and responding to threats within Federal civilian agency networks as CISA moves to modernize “legacy capabilities” under its EINSTEIN program. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released the first series of final security guidance resources under its Secure Cloud Business Applications (SCuBA) project today. […]
The National Institute of Standards and Technology (NIST) is seeking to guide officials from the water sector on how to address cyber challenges that impact water infrastructure. […]
The Senate Armed Services Committee on June 23 advanced its version of the National Defense Authorization Act (NDAA) for fiscal year (FY) 2024 by a vote of 24-1. […]
With higher salaries on the horizon, attrition is down at the Transportation Security Administration (TSA), but TSA’s top official said Thursday that a House funding bill for fiscal year 2024 would force the agency to reverse forthcoming pay increases – and cut down on the agency’s ability to defend against cyberattacks. […]
The Cybersecurity and Infrastructure Security Agency (CISA) held its second quarter Cybersecurity Advisory Committee (CSAC) meeting on June 22, where subcommittee chairs shared progress updates on their work. […]
Panelists at a Capitol Hill hearing made a broad call today for employers to no longer require four-year college degrees when it comes to hiring a robust cybersecurity workforce. […]
As the Federal government is working to manage the potential risks that AI-driven systems can present, the head of the State Department’s Bureau of Cyberspace and Digital Policy said on June 21 that one positive AI application he’s excited about is using the technology to write more secure software. […]
The Department of Energy (DoE) is in the “drafting process” of creating a new cybersecurity strategy that will address cloud technologies to be used by the agency going forward, according to Ann Dunkin, chief information officer at DoE, who talked about process for the strategy during a June 20 event organized by Federal News Network. […]
Three members of the House Armed Services Committee unveiled a bipartisan measure late last week aimed at strengthening cybersecurity practices for the United States’ nuclear weapons system, and aim to advance that measure in legislation this week. […]
Leaders of the House Homeland Security Committee’s Cybersecurity and Infrastructure Protection Subcommittee will soon travel overseas for meetings on cybersecurity subjects as part of an official congressional delegation (CODEL). […]
As cyberattacks continue to be on the rise, information sharing between the public and private sectors is even more crucial, especially with Defense Industrial Base (DIB) companies, according to a cybersecurity official at the National Security Agency (NSA). […]
The Senate Homeland Security and Governmental Affairs Committee voted today to approve several cybersecurity-related bills, including the Cybersecurity Awareness Act of 2023, and the DHS International Cyber Partner Act of 2023. […]
The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and a host of overseas cybersecurity authorities today published a joint cybersecurity advisory on the threat posed by LockBit ransomware. […]
The House Armed Services Cyber, Information Technologies, and Innovation subcommittee voted unanimously today to approve a tech-and cyber-focused legislative proposal within the National Defense Authorization Act (NDAA) for fiscal year (FY) 2024. […]
The Cybersecurity and Infrastructure Security Agency (CISA) issued a binding operational directive today that requires Federal civilian agencies to take action to protect network management interfaces from the public-facing internet. […]
A new progress report from the Government Accountability Office (GAO) reveals that despite several years of efforts, the National Nuclear Security Administration (NNSA) and its contractors are still in the “early stages” of addressing cybersecurity threats at the system level in operational technology (OT) and nuclear weapons IT environments. […]
While discussing the threat that the Chinese government poses to America when it comes to cybersecurity, one congressman said today that our nation should look to implementing a Cyber National Guard Corps. […]
Sens. Gary Peters, D-Mich., and James Lankford, R-Okla., introduced on June 7 a bipartisan piece of legislation that would strengthen the ability of the Cybersecurity and Infrastructure Security Agency (CISA) to work with international partners on matters of cybersecurity. […]
The White House released its National Cybersecurity Strategy (NCS) in March, and the Office of National Cyber Director (ONCD) is working fast to develop an implementation plan and a workforce strategy to build a more resilient future. […]
The Cybersecurity and Infrastructure Security (CISA) and the FBI this week amplified CISA’s warning last week about an SQL injection vulnerability in the MOVEit Transfer managed file transfer software. […]
A decade-old directive from the White House on public-private collaboration for the protection of critical infrastructure is outdated and incapable of meeting today’s demands, according to a June 6 report by the Cyberspace Solarium Commission 2.0. (CSC 2.0). […]
It’s time for businesses to start people-proofing their systems. According to Verizon’s 16th Annual Data Breach Investigations Report released today, 74 percent of all breaches include the human element through error, privilege misuse, social engineering, or use of stolen credentials. […]
As China continues on its path to become the leading cyber adversary to the United States, lawmakers and government officials are looking for ways to strike a balance that will cater to benefits of economic partnerships with China while not exposing American security interests in the process. […]
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), the FBI, and international cybersecurity agencies issued a joint cybersecurity advisory to highlight a recently discovered cluster of cyber activity linked to a People’s Republic of China (PRC) state-sponsored cyber actor dubbed Volt Typhoon. […]
The Department of Defense (DoD) this week sent Congress a classified version of its 2023 cybersecurity strategy, and said an unclassified summary of the strategy will be rolled out in the coming months. […]
The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and the FBI, along with international partners, released a joint cybersecurity advisory on Wednesday sharing technical details regarding malicious activity by a People’s Republic of China (PRC) state-sponsored cyber actor. […]