Federal Chief Information Security Officer (CISO) Grant Schneider said today that the Office of Management and Budget (OMB) is continually working towards developing standards and accountability for supply chain security and cybersecurity. […]
The Office of Inspector General of the Intelligence Community (ICIG) raised concerns over oversight of artificial intelligence (AI) initiatives and how inspectors general can keep up with the pace of technology in the ICIG semiannual report to Congress, publicly released today. […]
An inspector general (IG) report publicly released this week identified weaknesses in the Federal Deposit Insurance Corporation’s (FDIC’s) network firewalls and security information and event management (SIEM) tools. […]
The Association for Computing Machinery asked the U.S. Election Assistance Commission (EAC) to adopt policy that disallows internet connections to voting equipment. […]
Maj. Gen. Mary O’Brien was nominated by President Donald Trump to become deputy chief of staff for intelligence, surveillance, and reconnaissance (ISR) for Cyber Effects Operations at the U.S. Air Force headquarters. […]
The Environmental Protection Agency (EPA) has failed to monitor plans of action and milestones (POA&Ms) for cybersecurity weaknesses as required by EPA policy, the agency’s Inspector General (IG) said. […]
For the first time, Moody’s has downgraded a company’s credit rating because of a cyberattack. […]
The Congressional Budget Office (CBO) released its cost estimate for the Small Business Administration (SBA) Cyber Awareness Act, H.R. 2331 and S. 772, on May 20, and said the bill would cost nothing to implement. […]
The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) published a list of best practices for securing election systems on May 21. […]
The Defense Security Service has awarded a $75 million contract to Perspecta through an other transaction agreement (OTA) that will work to add advanced AI to backend systems and modernize the vetting processes of security clearance personnel for the National Background Investigation Service (NBIS). […]
A bipartisan group of Federal legislators wrote Secretary of State Mike Pompeo and Director of National Intelligence Dan Coats on May 20 urging “greater scrutiny and regulation of private companies providing highly advanced surveillance capabilities to governments with troubling human rights records.” […]
The Democratic National Committee (DNC) still has hackable vulnerabilities in its computer networks, while the Republican National Committee (RNC) performed slightly better than the DNC, but still has gaps to fill, according to a new report. […]
Sen. Chuck Schumer, D-N.Y., will call for a Federal investigation that examines the potential national security threat of plans to install New York subway cars designed by a Chinese state-owned company. […]
President Trump was a victim of hacking on May 17 when four false scores were posted to Trump’s United States Golf Association-administered Golf Handicap and Information Network (GHIN) system. The scores were middling by golf standards (101, 100, 108 and 102), and deviated from Trump’s typical reported scores which fall in the 70s and 80s. […]
Cyber incidents and data breaches in 2018 were overwhelmingly driven by hopes for financial gain in private-sector and state-sponsored cyber-espionage in public-sector attacks in 2018, Verizon found in its Data Breach Investigations Report released last week. […]
President Donald Trump declared a “national emergency” when he signed an executive order (EO) on May 15 that would grant Federal authority to prohibit the adoption of foreign adversaries’ telecom suppliers. Though the order was signed only a day ago, both legislators and trade groups have already weighed in and the EO has received mostly positive reviews. […]
The vast majority of security IT decision makers are willing to share threat intelligence data with the government to help improve decision making when it comes to cyberattacks, according to an IronNet survey release today. […]
North Korean-state sponsored hackers, known as ScarCruft, are targeting Bluetooth devices with a new strain of malware. […]
Financial losses from internet-enabled cyber crimes have continued to grow and were responsible for the loss of $2.7 billion in 2018, according to the FBI Internet Crime Complaint Center (IC3) annual Internet Crime Report for 2018 published last month. […]
A Russian hacker collective known as Fxmsp claimed on April 24 that it breached three large U.S.-based antivirus companies. […]
The Cybersecurity Tech Accord (CTA) announced May 9 that 16 new companies have signed on to the agreement, bringing the total to more than 106 signatories one year after its creation. […]
Sen. Angus King, I-Maine, and Rep. Mike Gallagher, R-Wis., announced the formal launch of the Cyberspace Solarium Commission (CSC) on May 8. The two lawmakers will lead the 14-person Commission. […]
Federal CIO Suzette Kent met with members of the National Association of State Chief Information Officers (NASCIO) today to discuss strengthening the partnerships between Federal and state governments. […]
In honor of World Password Day on May 2, OneLogin released a new report on corporate password practices. […]
While few can pronounce the Air Force CTO’s name – zero can spell it – which leads us in nicely to Frank Konieczny’s presentation on Zero Trust at Akamai’s event on Tuesday, April 30, “Zero Trust: Moving Beyond Perimeter Security.” […]
The Department of Justice announced May 3 that it, in partnership with German authorities, has charged three German nationals with operating Wall Street Market (WSM), “which was one of the world’s largest dark web marketplaces that allowed vendors to sell a wide variety of contraband,” including malware. […]
On May 16, the Department of Homeland Security (DHS) will be hosting an Industry Day in Washington, D.C., to seek more information on 5G wireless networks protections. […]
A software security framework document issued this week by trade group BSA | The Software Alliance drew the endorsement of key House and Senate lawmakers involved in cybersecurity issues. […]
The Government Accountability Office (GAO) recommended that the Transportation Security Administration (TSA) revise its pipeline security, cybersecurity guidelines, and risk assessment methodology, and build a more robust cybersecurity workforce to enhance its pipeline security program. […]
On the Hill, Cybersecurity and Infrastructure Security Agency Chris Krebs made the case for his agency’s FY2020 $3.17 billion budget request – which represents a cut over FY2019 funding levels – during an April 30 House Committee on Homeland Security Subcommittee on Cybersecurity, Infrastructure Protection, and Innovation hearing. In a rare move, there was strong bipartisan support for increasing the funding request and providing more funding to help improve the nation’s cybersecurity posture. […]