MeriTalk’s mixologists are giving the artist formerly known as Cyber Smoke a new shake. As of 2024, the bi-monthly power networking event is called MeriTalk Tech Tonic. […]
Federal agencies have until the end of the day to shut down two widely used software products due to major cybersecurity vulnerabilities. […]
The Senate Homeland Security and Governmental Affairs Committee (HSGAC) today approved two bills related to cybersecurity and software – the Industrial Control Systems Cybersecurity Competition Act and the Source Code Harmonization And Reuse in Information Technology (SHARE IT) Act. […]
A new white paper advocates for improved information sharing among private sector firms, stressing the need for timely, relevant, and detailed threat information to mitigate cyberattacks, aid in system recovery, and enhance the resilience of commercial networks. […]
Artificial intelligence (AI) has the potential to flip the cyber threat landscape paradigm by helping defenders better mitigate future threats, a senior official at the Central Intelligence Agency (CIA) said on Thursday. […]
Former Senate Homeland Security and Governmental Affairs Committee (HSGAC) senior staffer Jeff Rothblum has landed a new cyber leadership position at the White House. […]
The General Services Administration (GSA) Inspector General (IG) has found that the acquisition agency in 2022 purchased Chinese-manufactured videoconference cameras with known security vulnerabilities. […]
The Defense Department (DoD) is in the process of sifting through options to develop the next iteration of the military’s cyber forces, a senior Pentagon official said on Jan. 17. […]
The Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive today requiring agencies to mitigate “widespread and active exploitation” of vulnerabilities in Ivanti Connect Secure VPN and Policy Secure network access control appliances. […]
The government’s latest Federal Cybersecurity Research and Development (R&D) Strategic Plan is placing human-centered cybersecurity at the forefront of the nation’s cyber research and development activities and investments for the next four years. […]
The Department of Energy’s (DoE) Office of Cybersecurity, Energy Security, and Emergency Response (CESER) today announced a $30 million funding opportunity to support the research, development, and demonstration (RD&D) of next generation tools to protect clean energy delivery infrastructure from cyberattacks. […]
The Aspen Institute’s US and Global Cybersecurity Groups released a new report on Tuesday that offers up recommendations on how to safely use AI in cybersecurity and steers organizations toward a “good place” where AI predominantly helps defenders. […]
A new report from the Government Accountability Office (GAO) reveals that Federal agencies’ implementation of the Federal Information Security Modernization Act (FISMA) continued to be mostly ineffective in recent years, and it calls on the Office of Management and Budget (OMB) to develop better metrics to evaluate the effectiveness of FISMA. […]
A bipartisan pair of lawmakers have sent a letter warning Defense Secretary Lloyd Austin and Treasury Secretary Janet Yellen of what they call the “problematic relationship” that China-based Quectel Wireless has with being a “civil-military fusion arm” of the Chinese government. […]
Federal agencies have improved their cybersecurity information sharing in recent years but barriers remain, according to a recent joint report released by the Office of the Inspector General (OIG) of the Intelligence Community (IC). […]
The Department of Energy’s (DoE) Office of Cybersecurity, Energy Security, and Emergency Response (CESER) has announced up to $70 million in funding to support research into technologies designed to increase resilience and reduce risks to energy delivery infrastructure from a variety of hazards, including cyber threats. […]
The White House’s former National Cyber Director (NCD) Kemba Walden has been tapped to lead Paladin Capital Group’s new Global Institute, the investment firm announced today. […]
With the prevalence of AI technology becoming ubiquitous in daily life, the National Institute of Standards and Technology (NIST) recently released a new paper warning of hackers looking to potentially manipulate or “poison” AI data sets for malicious purposes. […]
The Department of Transportation (DoT) has released its annual financial report for fiscal year (FY) 2023 in which the agency shares its cybersecurity successes from 2023 and plans to further improve its cybersecurity posture in 2024. […]
The Defense Department (DoD) on Dec. 26 published its latest proposed overhaul of the agency’s Cybersecurity Maturity Model Certification (CMMC) 2.0 program that would set three levels of cybersecurity compliance for defense industrial base (DIB) contractors, and allow for contractors to perform security self-assessments at some of the lower requirement levels. […]
A sampling of execs from some of the Federal government’s top IT and service vendors is showing consensus that artificial intelligence (AI) technologies will continue to be a major hot-button issue in government tech circles in 2024, with cybersecurity and workforce development also making strong showings in the new year. […]
From implementing the National Cybersecurity Strategy to issuing broad-sweeping software security guidelines, boosting the nation’s cyber posture was top of mind for the Biden administration in 2023. […]
The National Security Agency (NSA) published its 2023 Cybersecurity Year in Review this week to share its recent cybersecurity successes, including the agency’s work to enhance national security through artificial intelligence, strategic competition, and more. […]
The Cybersecurity and Infrastructure Security Agency (CISA) issued a formal request for information (RFI) in the Federal Register today looking for feedback on its secure-by-design software practices. […]
By Jeff Stewart, Vice President, Product, SolarWinds The exponential growth of digital government has led to unprecedented security breaches across the supply chain. To address these threats, in 2021 the Biden administration enacted Executive Order 14028 intensifying scrutiny over vendors’ software supply chain. Subsequently, in 2023 the National Cybersecurity Strategy was introduced, urging software vendors […]
The Cybersecurity and Infrastructure Security Agency (CISA) said that it will begin a two-year strategic effort to modernize its approach to enterprise cyber threat information sharing in 2024 “to maximize value to our partners and keep pace with a changing threat environment.” […]
Microsoft announced this week that the company has taken down websites and other online assets used by the Storm-1152 cybercrime group, which the company said is the “number one seller and creator of fraudulent Microsoft accounts.” […]
The Cybersecurity and Infrastructure Security Agency (CISA), as part of its Secure Cloud Business Applications (SCuBA) program, released a series of nine security configuration baselines for Google Workspace today, including applications like Gmail, Google Drive, and Google Meet. […]
The Department of Health and Human Services (HHS) has released a concept paper that outlines the department’s cybersecurity strategy for the healthcare sector, detailing four key actions it will take to advance cyber resiliency in the sector. […]
The U.S. Air Force laid out a list of steps it is taking to better protect and regulate access to classified data in the wake of last summer’s “Discord” breach that exposed to the public hundreds of classified military and intelligence agency documents, according to a Dec. 11 report that details the service branch’s responses to the breach. […]