The Department of Energy Office of Inspector General released a report on Oct. 19 that found several weaknesses in the cybersecurity program at DoE in fiscal year 2018, including recurring issues in vulnerability management, patching, and formal cybersecurity training policies. […]
The answer to that question is “yes,” according to a white paper released today by New America, a non-partisan think tank. The white paper argues that while the United States has been engaged in cybersecurity for more than a generation, there are still “organizational and human gaps” that leave the country insecure. […]
After some fits and starts, Federal agencies are gaining ground in efforts to better secure their websites and email systems by employing HTTPS encryption, and installing the Domain-based Message Authentication, Reporting and Conformance (DMARC) anti-phishing protocol, among other measures […]
A team of Federal and industry experts well versed in establishing relationships between the government and private sector spoke Wednesday at NVIDIA’s GTC Conference about how to crack the Federal marketplace with new and emerging technology. […]
The General Services Administration aims to use data analytics to detect if requests for information and proposals for IT products meet section 508 compliance requirements, according to Marina Fox, .gov domain services program manager at GSA. […]
The Department of Homeland Security (DHS) shared details on its Cyber Risk Economics Capability Gaps Research Strategy, which is part of its Cyber Risk Economics (CYRIE) program, in a blog post on Tuesday. […]
Former Department of Defense officials today offered mostly positive reviews of the current administration’s approach to cybersecurity–including the National Cybersecurity Strategy and the DoD Cyber Strategy–while taking note of the risks posed by more offensive-minded leanings featured in those policies. […]
Federal CIO Suzette Kent said today that the advancement of artificial intelligence technologies is of primary importance to the Federal government, as agencies begin to determine their AI priorities and a picture of government-wide investment begins to form. […]
In an effort to halt the spread of election disinformation online, United States Cyber Command (USCYBERCOM) is telling Russian operatives that American operatives have identified who they are and are tracking their efforts. The campaign is the first known overseas cyber operation to protect American elections, according to the New York Times which first reported the story. […]
Yahoo, which is now owned by Verizon, has agreed to pay $50 million in damages, plus about $35 million in legal fees, under a proposed civil settlement covering data breaches in 2013 and 2014 that impacted three billion Yahoo accounts, according to numerous press reports. […]
The intelligence community’s (IC) stock in trade has always been knowing what nobody else knows. Now it’s looking to tap into new technology to expand its ability to forecast geopolitical events in several ways, including finding out what everybody knows. […]
A Senate Commerce, Science, and Transportation Committee staffer suggested Tuesday that the many and sometimes disparate elements of industry and academia that make up what could be considered the artificial intelligence (AI) sector should take action to present a more united front to Congress if they hope to convince legislators to create laws that would benefit the sector. […]
Leaders at defense and intelligence agencies have a unique challenge–how to build a cloud environment that is secure, reliable, and delivers a wide variety of services. […]
The upcoming Federal Data Strategy, currently in development and open to comment, aims to increase transparency and drive better service for citizens, said Jay Huie, a White House leadership development fellow, who described himself as an “ombudsperson” for the Federal Data Fellows developing the strategy. […]
Department of Homeland Security Under Secretary Christopher Krebs said today that the biggest change in election security between the 2016 elections and today is the elimination of communication barriers between state and local authorities and the Federal government. […]
Federal cyber pros at Palo Alto Networks’ Federal Ignite conference weighed in today on the cost of cybersecurity and its return on investment, suggesting that government spend may not be properly configured to the risks, threats, and real assets that need to be protected. […]
Big data analytics are helping Federal agencies enable their users to do more to serve citizens, but agencies have yet to harness the vast amount of data in the Federal space, said IT leaders during a panel at the ATARC Data & Analytics Summit on Tuesday. […]
The National Association of State Chief Information Officers (NASCIO), in partnership with Deloitte, today released its new cybersecurity study which argues CISOs need to launch three “bold initiatives” to ward off advanced cyber threats. […]
Super Micro Computer told customers in an Oct. 18 letter that the gist of a recent Bloomberg Businessweek article–reporting the alleged secret implantation of malicious computer chips in motherboards made by the company and used by numerous U.S. companies and government agencies–is “wrong,” and that “from everything we know and have seen, no malicious hardware chip has been implanted during the manufacturing of our motherboards.” […]
The General Services Administration’s Office of Inspector General said in a report issued Oct. 19 that it wants GSA’s IT Office (GSA IT) to provide a revised corrective action plan to improve the agency’s policies for responding to breaches of personally identifiable information (PII). […]
The Office of the Director of National Intelligence, alongside the Justice Department, Federal Bureau of Investigation, and Department of Homeland Security, released a joint statement today that expresses their concern over election interference and calls identification and prevention of interference a “top priority for the Federal government.” […]
Retired Adm. Mike Rogers, who stepped down earlier this year as head of U.S. Cyber Command and director of the National Security Agency, has joined the board of advisors of Team8, an Israel-based cybersecurity think tank and company-creation platform. […]
As fake news threatens to eat the world, a number of government, academic, and private organizations have launched a range of projects to combat its spread, including artificial intelligence systems that can flag fake news by calling out its content. […]
Current and retired Defense Department IT officials today discussed cost and opportunity implications of further cloud adoption by the military and potential payoffs including acceleration of artificial intelligence (AI) technologies. […]
Yesterday two academics proposed creating an international organization modeled after the International Committee of the Red Cross (ICRC), that would “provide assistance and relief to vulnerable citizens and enterprises affected by serious cyberattacks.” […]
Data from the Federal government’s IT Dashboard website appear to indicate that Federal CFO Act agencies have made some progress but are still more than 1,000 data centers short of their intended closure goals for 2020 under the Data Center Optimization Initiative (DCOI). […]
The Food and Drug Administration (FDA) released new draft guidance for the cybersecurity of medical devices on Wednesday, with a focus on risk management and applying the cybersecurity framework from the National Institute of Standards and Technology (NIST). […]
For agencies looking to score a touchdown with their customer experience, the General Services Administration (GSA) released its Customer Experience Playbook today, offering “a synthesis of ideas gathered from interviewing several subject matter experts and leaders in CX and Human Centered Design in government.” […]
Two prominent tech-sector trade groups said Tuesday that planned trade agreement talks between the U.S. and the European Union, United Kingdom, and Japan should prioritize easing cross-border data flows and barring requirements to compel the transfer of technology, source code, and encryption keys. […]
In a report released today, the International Information System Security Certification Consortium, (ISC)², a nonprofit association of certified cybersecurity professionals, found a global cybersecurity workforce shortage of 2.93 million people as of August 2018. […]