Several Federal agencies that have been tasked with promoting the adoption of cybersecurity standards by private-sector critical infrastructure providers are coming up short in their efforts to evaluate whether private providers are getting that work done. […]
The National Counterterrorism Center (NCTC) has released a new mobile app – dubbed aCTknowledge – that shares unclassified counterterrorism reports, analysis, training resources, and alerts. […]
While the Office of the National Cyber Director (ONCD) is still the new kid on the block in Federal cybersecurity policy circles, National Cyber Director Chris Inglis said this week that his office’s success ultimately will hinge on whether it can unite policy, people, and doctrine to act as a viable collaborator with the Federal government and private industry. […]
The Senate Commerce, Science, and Transportation Committee held a second hearing Feb. 9 on the nomination of Gigi Sohn to become an FCC commissioner, which produced little in the way of new information about her qualifications for the position, and not much insight into when or whether the Senate may take action to confirm the nomination. […]
A group of House and Senate members from both major political parties urged five Federal agencies in Feb. 9 letters to end their use of facial recognition technologies, particularly those that employ AI tools supplied by software firm Clearview. […]
After reviewing the cyberattack trends from 2021, the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint advisory with the FBI and other international security partners warning of the rising global threat of ransomware and gave mitigation and remediation advice. […]
According to a new report from the Government Accountability Office (GAO), the Office of Personnel Management (OPM) needs to generate more reliable data on Federal telework. […]
Internal Revenue Service (IRS) Commissioner Charles Rettig told Sen. Maggie Hassan, D-N.H., in late December that the IRS needs more money and changes to the tax code to better prevent and prosecute criminal uses of cryptocurrency, which has emerged in recent years as a favored medium of exchange involving ransomware and other cyber attacks. […]
Partnerships play a big role in driving health IT innovation, and experts from the Department of Defense’s (DoD) Military Health System (MHS) advise government organizations to leverage industry partnerships for innovative ideas and opportunities. […]
Federal law enforcement seized more than $3.6 billion in stolen cryptocurrency directly linked to the 2016 hack of virtual currency exchange Bitfinex, and have arrested a husband and wife from New York allegedly connected to the stolen bitcoins. […]
In the wake of the discovery and remediation efforts surrounding the Log4shell vulnerability in the Apache library that contains Log4j, the Cybersecurity and Infrastructure Security Agency (CISA) called for efforts to push forward a software bill of materials (SBOM). Those calls were reiterated today at a Senate hearing on the vulnerability by industry witnesses involved in remediation efforts. […]
Federal Communications Commission (FCC) Chair Jessica Rosenworcel today announced the formation of a cross-agency task force that will focus on creating rules and policies to combat digital discrimination and to promote equal broadband access nationwide. […]
The National Oceanic and Atmospheric Administration (NOAA) inadequately managed three active directories, increasing the risk of cyberattacks and jeopardizing NOAA’s ability to accomplish its mission. […]
The Department of Homeland Security (DHS) has launched two new online resources for supporting noncitizen service members, veterans, and their families. […]
Leadership of the Senate Homeland Security and Governmental Affairs Committee has introduced a package bill in the Senate that would update both the Federal Information Security Management Act (FISMA), which sets cybersecurity requirements for Federal agencies, and codify the Federal Risk and Authorization Management Program (FedRAMP) that certifies cloud services as secure to use for Federal government agencies. […]
The National Security Agency (NSA) released its “2021 NSA Cybersecurity Year in Review” report that highlights a year filled with increased collaboration with industry experts to mitigate cyber threats. […]
The National Institute of Standards and Technology (NIST) has published five directives identifying practices that enhance security of the software supply chain. […]
The Department of Defense (DoD) has finalized its Software Modernization Strategy to help enable delivery of resilient software capabilities. […]
In their efforts to help shrink the cyber workforce shortage, officials from the Office of the National Cyber Director (OCND) and the Cybersecurity and Infrastructure Security Agency (CISA) are emphasizing the need for collaboration and creation of a more robust culture of cybersecurity – starting with K-12 education on up. […]
Bipartisan legislation introduced in both the House and Senate would direct the Department of Labor to award grants aimed at increasing access to registered apprenticeship programs in cybersecurity. […]
The Cybersecurity and Infrastructure Security Agency (CISA) will sponsor the first-ever U.S. Cyber Team, which will compete in the International Cybersecurity Challenge (ICC) this June in Greece. […]
The Federal Communications Commission (FCC) announced a new partnership with the Institute of Museum and Library Services (IMLS) to expand broadband connectivity to Tribal libraries. […]
In a reorganization of responsibilities, the Department of Defense (DoD) has put the Cybersecurity Maturation Model Certificate (CMMC) program under the oversight of the DoD’s Office of the CIO (OCIO), a shift from being the responsibility of the Under Secretary of Defense for Acquisition and Sustainment (A&S), according to a Feb. 3 release. […]
The Department of Homeland Security (DHS) has officially formed the Cyber Safety Review Board called for in President Biden’s Cybersecurity Executive Order issued last year, and said the board’s first action will be to examine the log4j software library vulnerability that emerged in December 2021 and to generate lessons learned from that for the cybersecurity community. […]
The Senate Homeland Security and Governmental Affairs Committee on Feb. 2 voted to approve the Improving Cybersecurity of Small Organizations Act of 2021 (S. 2483), which would require the Cybersecurity and Infrastructure Security Agency (CISA) to maintain and promote cyber guidance for use by small organizations. […]
The Federal Communications Commission (FCC) announced that FCC Chair Jessica Rosenworcel will lead the relaunched Cybersecurity Forum for Independent and Executive Branch Regulators. […]
The House of Representatives waded into the final stages of debate today in its consideration of the America Creating Opportunities for Manufacturing, Pre-Eminence in Technology and Economic Strength Act of 2022 (COMPETES). […]
An annual report from the Defense Department’s (DoD) Director for Operational Test and Evaluation (DOT&E) has found the Military Health System (MHS) GENESIS – DoD’s new electronic health records management (EHRM) system – was not deemed to be survivable in a cyber-contested environment following reviews in 2020 and 2021. […]
Rep. Jim Langevin, D-R.I., said he is eyeing a universe of about 100 private sector firms that he considers to be “systemically important” critical infrastructure providers as he completes work on legislation that will call for closer collaboration between the Federal government and those companies on cybersecurity and related intelligence sharing. […]
Third-party auditors found several deficiencies in the Department of Labor’s (DoL) information security program and determined it was not effective. […]