By a vote of 86-8, the Senate voted to pass the National Defense Authorization Act (S. 1790) which includes funding to accelerate artificial intelligence solutions within the Defense Innovation Unit, enhancing cybersecurity, and cloud capabilities. […]
U.S. critical infrastructure is in solid shape, according to defense officials, and a digital transformation has helped define a proactive approach to protecting data and implementing cyber operations. […]
Members of the House Homeland Security Committee’s Subcommittee on Cybersecurity, Infrastructure Protection, and Innovation discussed at a June 25 hearing ways the Federal government can help state and local governments (SLGs) deal with their cybersecurity challenges, including providing funding and opportunities to collaborate. […]
The National Institute of Standards and Technology (NIST) released an interagency report offering guidance for Federal agencies for managing Internet of Things (IoT) cybersecurity and privacy risks. […]
The Census Bureau did not implement security baselines and basic security practices for its cloud implementation, leading to “severe risks to 2020 Census cloud environments,” according to an audit from the Department of Commerce Inspector General released June 19. […]
A new report from Cybereason says that persistent cyberattacks on at least 12 global telecom service providers since 2012 were likely perpetrated by the China-based threat actor known as APT10. […]
Federal agencies are unprepared to confront and mitigate cyberthreats today, the Senate Homeland Security and Governmental Affair Committee Investigations Subcommittee determined in a report released today, recommending that agencies give CIOs more authority to make decisions on cybersecurity. […]
In a statement on the recent reports of Iranian cyberattacks directed at the U.S. government, the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Director Christopher Krebs warned of “wiper” attacks that could compromise entire systems. […]
The June updates from the President’s Management Agenda’s (PMA) CAP Goal Action Plan to Modernize IT to Increase Productivity and Security, released June 20, see all key milestones either completed or on track to be completed by Q4 FY2019, but delays in implementing government-wide tools have impacted asset management security capabilities. […]
Sens. Gary Peters, D-Mich., and Rob Portman, R-Ohio, introduced the State and Local Government Cybersecurity Act on June 18. […]
The Cybersecurity and Infrastructure Agency (CISA) sent out an alert warning of an email phishing scam that is attempting to trick users into opening attachments that are designed to look like Department of Homeland Security notifications. […]
Sens. Cory Gardner, R-Colo., and Ed Markey, D-Mass., introduced the Hack Your State Department Act on June 12. […]
A panel of witnesses explained to senators the challenges and potential solutions for securely using and regulating unmanned aircraft systems (UAS) or drones at a June 18 Senate Commerce, Science, and Transportation Committee Security Subcommittee hearing. […]
The House Appropriations Committee released a second of five appropriations minibus FY2020 spending bills for Commerce-Justice-Science, Agriculture-Rural Development-FDA, Interior-Environment, Military Construction-Veterans Affairs, and Transportation-Housing and Urban Development. […]
A new zero-day flaw has been discovered in a TP-Link Wi-Fi extender, according to an IBM blog post published today. […]
As of April, 209,000 Americans have volunteered to provide their personal health data for the National Institutes of Health (NIH) All of Us Research Program to build a national research cohort of over 1 million participants that will help drive the Precision Medicine Initiative. But those participants may have placed their data at risk. […]
The worsening worldwide shortage of skilled cybersecurity professionals is shaping up to be a key driver to cloud-delivered security services, explained Peter Firstbrook, a VP analyst with Gartner, at the company’s Security and Risk Management Summit on June 17. […]
The Defense Department (DoD) Office of Under Secretary Acquisition of Sustainment is creating a new certification model to streamline DoD’s cybersecurity acquisition processes, Special Assistant to DoD’s Assistant Secretary of Defense Acquisition for Cyber Katie Arrington said at the Professional Services Council Federal Acquisition Conference today. […]
Today, Reps. Jim Himes, D-Conn., and John Ratcliffe, R-Texas introduced new legislation that would establish election interference as a Federal crime. The bipartisan bill, dubbed the Defending the Integrity of Voting Systems Act, would make it a Federal crime to hack a voting system used in a Federal election. […]
New research suggests that over the past five years, 33 percent of cybersecurity data breaches could have been prevented with Domain Name System (DNS) firewalls. […]
The latest survey by Unisys of consumer security concerns found that Americans are more alarmed about the possibility of identity theft and bankcard fraud than they are about national security in general. […]
The FBI’s Internet Crime Complaint Center (IC3) says that more and more cyber criminals are capitalizing on website visitor trust in phishing campaigns. […]
The House Appropriations Committee Homeland Security Subcommittee allocated $63.8 billion in its draft of the FY2020 Department of Homeland Security (DHS) budget, including increased funding to efforts to bolster cybersecurity, election security, and new IT and border security technologies. […]
Most industries are still vulnerable to fake emails and email addresses despite using Domain-based message Authentication, Reporting & Conformance (DMARC) protocols. […]
Cybersecurity professionals polled indicated that the most prevalent types of threat actors and attack vectors of recent years will remain consistent but increase in attack volume in 2019. […]
The Congressional Budget Office (CBO) estimated on June 7 that H.R.1648, the Small Business Advanced Cybersecurity Enhancements Act of 2019, will cost about $2 million annually to implement, and $11 million in total between 2019 and 2024, if the bill is enacted. […]
As the reality of cyber threats and data breaches becomes closer to normal life for private and public sector organizations, a Nominet report finds that while executives know cyber risks are high, they still lack resources and accountability for handling breaches and information security. […]
Sen. Ron Wyden, D-Ore., requested information on how the Department of Justice (DoJ) is securing its offensive cyber tools in a June 5 letter to Attorney General William Barr. […]
A recent Office of the Inspector General (OIG) report for the U.S. Nuclear Regulatory Commission (NRC) found that although the NRC had sufficient protection of digital computers, communication systems, and networks associated with safety, security, and emergency preparedness, the commission’s cybersecurity inspection program is facing future staffing issues that will affect its ability to mitigate cyber risks. […]
The identity, credential, and access management policy recently released by the Office of Management and Budget (OMB) mostly keeps existing policy in place, but sets a framework for faster policy evolutions and acknowledges the need for protections within the perimeter, said Sean Frazier, advisory CISO at Duo Security. […]