The General Services Administration (GSA) today announced that it awarded a $2 million contract to HackerOne for the facilitation of GSA’s bug bounty programs. […]
The National Cyber Strategy policy document released by the White House late Thursday tracks in tone and wording with the tough stance adopted in the Defense Department’s cyber strategy announced earlier this week–including its adoption of a more offensive-minded position than previous written policies–and appears to respond in tone to demands from across the political spectrum that the U.S. fashion policy that will do a better job in creating a deterrence effect against adversaries. […]
The general election in 2016 was a watershed moment for Federal, state, and local election officials. […]
According to a new study prepared for the National Institute of Standards and Technology (NIST), the agency’s development of the Advanced Encryption Standard (AES) has created an estimated $250 billion in economic impact over the last 20 years. […]
Researchers at cybersecurity firm Tenable published an advisory Monday revealing a software vulnerability affecting a popular brand of surveillance cameras, whcih could be exploited to gain access to video feeds and potentially “allow attackers to remotely view feeds and tamper with recordings.” […]
Sen. John Cornyn, R-Texas, today introduced the Advancing Cybersecurity Diagnostics and Mitigation Act in the Senate. The House version of the bill (HR 6443), sponsored by Rep. John Ratcliffe, R-Texas, passed the House earlier this month. […]
Department of Homeland Security Secretary Kirstjen Nielsen today swore in eight new members to the the Homeland Security Advisory Council (HSAC): Jayson P. Ahern, Stewart A. Baker, Frank J. Cilluffo, Mark J. Dannels, Carol DiBattiste, Cathy Lanier, Wendy Smith-Reeve, and Chad Sweet. […]
With the 2018 midterm elections less than 50 days away, Symantec is joining the chorus with several other cybersecurity companies by offering free election security measures. […]
According to a survey from ProPublica, more than one-third of 27 counties situated in House districts rated as toss-ups in the 2018 mid-term election are not using multi-factor authentication, leaving their systems vulnerable to attack. […]
The Department of Homeland Security’s National Cybersecurity & Communications Integration Center (NCCIC) is warning users “to remain vigilant for malicious cyber activity seeking to exploit interest in Hurricane Florence.” Alongside these recommendations, the Multi-State Information Sharing & Analysis Center (MS-ISAC) released a cyber intel advisory on Sept. 14, which notes an uptick in internet activity related to Florence. […]
The Department of Homeland Security Science and Technology Directorate (DHS S&T) today announced awards to five research organizations as part of a new program aimed at identifying network and internet disruptions that could “significantly impact critical infrastructure systems” and “other essential systems on which society is dependent.” […]
CyberWarCon is seeking speakers for its Nov. 28 conference in Arlington, Va., dealing with cyber attacks and information operations threats with cyber components. […]
President Trump today issued an Executive Order that creates a structure to evaluate whether any foreign actors are attempting to influence U.S. elections and authorizes the government to impose “appropriate and meaningful sanctions against foreign individuals and entities determined to have engaged in election interference.” […]
Apple later this year will launch an online portal for law enforcement officials to submit “lawful request for data, track outstanding requests, and obtain responsive data” from the tech company. […]
The Department of Health and Human Services Office of Inspector General recommended in a new report that the Food and Drug Administration pay even more attention to medical device cybersecurity during the process in which it evaluates products for approval to market in the U.S. […]
Tech giants including Microsoft, Facebook, Oracle, Cisco, Dell, and VMware are calling on the United States and other governments to invest in defensive, rather than offensive, cyber technologies. […]
Andrei Tyurin, a Russian citizen, was extradited to the United States on Friday from the country of Georgia in connection with his alleged participation in a computer hacking campaign that targeted U.S. financial institutions, brokerage firms, financial news publishers, and other American companies, according to the U.S. Attorney for the Southern District of New York. […]
A bill introduced by Rep. Blaine Luetkemeyer, R-Mo., chairman of the House Subcommittee on Financial Institutions and Consumer Credit, on Sept. 7 aims to create a national standard for financial institutions to notify consumers of data security breaches. […]
A new GAO report details how Equifax submitted to audits from agencies with which the company had contracts, but declined an offer of help from the Department of Homeland Security in the wake of the company’s 2017 data breach that exposed sensitive personal information of 143 million Americans. […]
Airport and private sector cybersecurity officials warned House members on Thursday of persistent cyber threats to the aviation sector, with two witnesses saying they regard such threats as the most dangerous that the industry faces currently. […]
The U.S. Chamber of Commerce on Thursday released its set of legislative recommendations for Congress to consider if and when it tackles data privacy issues, and placed maximum emphasis on the ideas that “sensitive personal information” of individuals deserve the highest level of protection, and that state data privacy statutes should be preempted by new federal law. […]
The National Academies of Sciences, Engineering, and Medicine (NASEM) is the latest in a string of organizations to release its recommendations on how Federal, state, and local officials can best secure U.S. elections, including the use of paper-ballot components. […]
The House on Wednesday passed a bill that would direct the Secretary of State to sanction and publish the names of foreign actors that have launched cyber attacks on the United States. H.R. 5576, the Cyber Deterrence and Response Act of 2018, passed the House on a voice vote. […]
Defense Department CIO Dana Deasy declined to comment today on DoD’s extension earlier this week of the deadline on the Joint Enterprise Defense Initiative (JEDI) cloud contract from September 17 to October 9. […]
The Government Accountability Office (GAO) today released an updated version of a report it issued in July detailing major cybersecurity challenges facing the Federal government and critical actions needed to address them. […]
The Department of Justice (DoJ) said today it charged Park Jin Hyok, a North Korean citizen and computer programmer, for conspiring in several high-profile cyber attacks including the 2014 attack on Sony Pictures, the 2018 WannaCry 2.0 ransomware attacks, and the 2016 theft of $81 million from Bangladesh Bank. […]
The Department of Homeland Security (DHS) is focused on modernizing its mindset to tackle a host of pressing issues including reducing its reliance on legacy systems, competing to attract cybersecurity talent, and combating supply chain threats, said DHS CIO Dr. John Zangardi today at the Billington Cybersecurity Summit. […]
The FBI wants to use artificial intelligence to add a new layer to its Next Generation Identification (NGI) system, specifically to counteract the increasingly common practice of criminals altering their fingerprints. […]
The chairman and ranking member of the Senate Intelligence Committee today voiced some interest in considering Federal government regulation of social media companies and their services, but offered no concrete steps on how to do so. […]
Browser maker Mozilla has named Alan Davidson vice president of global policy, trust, and security. He was director of Digital Economy at the Department of Commerce from 2015 to 2017. […]