A new report from Cybereason says that persistent cyberattacks on at least 12 global telecom service providers since 2012 were likely perpetrated by the China-based threat actor known as APT10. […]
Federal agencies are unprepared to confront and mitigate cyberthreats today, the Senate Homeland Security and Governmental Affair Committee Investigations Subcommittee determined in a report released today, recommending that agencies give CIOs more authority to make decisions on cybersecurity. […]
In a statement on the recent reports of Iranian cyberattacks directed at the U.S. government, the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Director Christopher Krebs warned of “wiper” attacks that could compromise entire systems. […]
The June updates from the President’s Management Agenda’s (PMA) CAP Goal Action Plan to Modernize IT to Increase Productivity and Security, released June 20, see all key milestones either completed or on track to be completed by Q4 FY2019, but delays in implementing government-wide tools have impacted asset management security capabilities. […]
Sens. Gary Peters, D-Mich., and Rob Portman, R-Ohio, introduced the State and Local Government Cybersecurity Act on June 18. […]
The Cybersecurity and Infrastructure Agency (CISA) sent out an alert warning of an email phishing scam that is attempting to trick users into opening attachments that are designed to look like Department of Homeland Security notifications. […]
Sens. Cory Gardner, R-Colo., and Ed Markey, D-Mass., introduced the Hack Your State Department Act on June 12. […]
A panel of witnesses explained to senators the challenges and potential solutions for securely using and regulating unmanned aircraft systems (UAS) or drones at a June 18 Senate Commerce, Science, and Transportation Committee Security Subcommittee hearing. […]
The House Appropriations Committee released a second of five appropriations minibus FY2020 spending bills for Commerce-Justice-Science, Agriculture-Rural Development-FDA, Interior-Environment, Military Construction-Veterans Affairs, and Transportation-Housing and Urban Development. […]
A new zero-day flaw has been discovered in a TP-Link Wi-Fi extender, according to an IBM blog post published today. […]
As of April, 209,000 Americans have volunteered to provide their personal health data for the National Institutes of Health (NIH) All of Us Research Program to build a national research cohort of over 1 million participants that will help drive the Precision Medicine Initiative. But those participants may have placed their data at risk. […]
The worsening worldwide shortage of skilled cybersecurity professionals is shaping up to be a key driver to cloud-delivered security services, explained Peter Firstbrook, a VP analyst with Gartner, at the company’s Security and Risk Management Summit on June 17. […]
The Defense Department (DoD) Office of Under Secretary Acquisition of Sustainment is creating a new certification model to streamline DoD’s cybersecurity acquisition processes, Special Assistant to DoD’s Assistant Secretary of Defense Acquisition for Cyber Katie Arrington said at the Professional Services Council Federal Acquisition Conference today. […]
Today, Reps. Jim Himes, D-Conn., and John Ratcliffe, R-Texas introduced new legislation that would establish election interference as a Federal crime. The bipartisan bill, dubbed the Defending the Integrity of Voting Systems Act, would make it a Federal crime to hack a voting system used in a Federal election. […]
New research suggests that over the past five years, 33 percent of cybersecurity data breaches could have been prevented with Domain Name System (DNS) firewalls. […]
The latest survey by Unisys of consumer security concerns found that Americans are more alarmed about the possibility of identity theft and bankcard fraud than they are about national security in general. […]
The FBI’s Internet Crime Complaint Center (IC3) says that more and more cyber criminals are capitalizing on website visitor trust in phishing campaigns. […]
The House Appropriations Committee Homeland Security Subcommittee allocated $63.8 billion in its draft of the FY2020 Department of Homeland Security (DHS) budget, including increased funding to efforts to bolster cybersecurity, election security, and new IT and border security technologies. […]
Most industries are still vulnerable to fake emails and email addresses despite using Domain-based message Authentication, Reporting & Conformance (DMARC) protocols. […]
Cybersecurity professionals polled indicated that the most prevalent types of threat actors and attack vectors of recent years will remain consistent but increase in attack volume in 2019. […]
The Congressional Budget Office (CBO) estimated on June 7 that H.R.1648, the Small Business Advanced Cybersecurity Enhancements Act of 2019, will cost about $2 million annually to implement, and $11 million in total between 2019 and 2024, if the bill is enacted. […]
As the reality of cyber threats and data breaches becomes closer to normal life for private and public sector organizations, a Nominet report finds that while executives know cyber risks are high, they still lack resources and accountability for handling breaches and information security. […]
Sen. Ron Wyden, D-Ore., requested information on how the Department of Justice (DoJ) is securing its offensive cyber tools in a June 5 letter to Attorney General William Barr. […]
A recent Office of the Inspector General (OIG) report for the U.S. Nuclear Regulatory Commission (NRC) found that although the NRC had sufficient protection of digital computers, communication systems, and networks associated with safety, security, and emergency preparedness, the commission’s cybersecurity inspection program is facing future staffing issues that will affect its ability to mitigate cyber risks. […]
The identity, credential, and access management policy recently released by the Office of Management and Budget (OMB) mostly keeps existing policy in place, but sets a framework for faster policy evolutions and acknowledges the need for protections within the perimeter, said Sean Frazier, advisory CISO at Duo Security. […]
Federal Chief Information Security Officer (CISO) Grant Schneider said today that the Office of Management and Budget (OMB) is continually working towards developing standards and accountability for supply chain security and cybersecurity. […]
The Office of Inspector General of the Intelligence Community (ICIG) raised concerns over oversight of artificial intelligence (AI) initiatives and how inspectors general can keep up with the pace of technology in the ICIG semiannual report to Congress, publicly released today. […]
An inspector general (IG) report publicly released this week identified weaknesses in the Federal Deposit Insurance Corporation’s (FDIC’s) network firewalls and security information and event management (SIEM) tools. […]
The Association for Computing Machinery asked the U.S. Election Assistance Commission (EAC) to adopt policy that disallows internet connections to voting equipment. […]
Maj. Gen. Mary O’Brien was nominated by President Donald Trump to become deputy chief of staff for intelligence, surveillance, and reconnaissance (ISR) for Cyber Effects Operations at the U.S. Air Force headquarters. […]