The Cybersecurity and Infrastructure Security Agency (CISA) released guidance today to protect “highly targeted” individuals – senior government and political officials – against the cyber espionage activity of Salt Typhoon. […]

While the Pentagon continues to build its cybersecurity capabilities, not everyone within the agency’s departments is prioritizing meeting cybersecurity standards, said David McKeown, the Department of Defense’s (DoD) senior information security officer and deputy chief information officer, on Friday.     […]

The Cybersecurity and Infrastructure Security Agency (CISA) today unveiled a draft update of its National Cyber Incident Response Plan (NCIRP), which was first published in 2016, and is seeking public comment on the draft through mid-January.   […]

More than 87 percent of all cyber threats took place over encrypted networks this year, a new Zscaler ThreatLabz report finds. The solution, the cybersecurity company says, lies in adopting zero trust security architectures. […]

Several agencies aren’t as secure as they need to be after missing deadlines to meet Internet of Things (IoT) cybersecurity requirements, the Government Accountability Office (GAO) revealed.   […]

The Department of Energy (DoE) needs to invest in and implement enterprise-wide data analytics capabilities in order to better identify and mitigate risk, according to a new report from the DoE Office of Inspector General (OIG). […]

A pair of bipartisan senators is pushing for the investigation of the Defense Department’s (DoD) “failure to secure its unclassified telephone communications from foreign espionage,” according to a letter sent Wednesday to DoD Inspector General Robert Storch. […]

The General Services Administration’s (GSA) Acquisition Policy Federal Advisory Committee (GAP FAC) held its first meeting today after tapping 14 new members and turning to new areas of focus including artificial intelligence, cloud computing, and cybersecurity.   […]

More than 80 percent of the most severe tech-related vulnerabilities to critical infrastructure originate from the same 20 software components, a new report out this week from Fortress Information Security finds. […]

Cybersecurity and Infrastructure Security Agency (CISA) Deputy Director Nitin Natarajan is urging critical infrastructure sectors to “elevate the discussion” of the growing risks of legacy operational technology (OT) systems. […]

The Cybersecurity and Infrastructure Security Agency (CISA) published guidance today that provides best practices to protect against cyberattacks by Salt Typhoon – a People’s Republic of China (PRC)-affiliated threat actor that has compromised networks of major global telecommunications providers. […]

As cyberattacks continue to target hospitals and other healthcare organizations, the Department of Health and Human Services (HHS) is failing to meet some of its bigger-picture cybersecurity goals for the sector, the Government Accountability Office (GAO) said in a Nov. 13 report.  […]

Through its notable sophistication, Salt Typhoon has cemented its status as one of the most advanced cyber-espionage groups in history – a new report reveals the tactics behind its success.  […]

As the number of successful cyberattacks on healthcare organizations continues to rise, a new report from the Department of Health and Human Services (HHS) Office of Inspector General (OIG) is calling on HHS to better ensure the protection of electronic protected health information (ePHI). […]

A report out this month by the Environmental Protection Agency’s (EPA) Inspector General (IG) finds that drinking water systems serving approximately 26.6 million people have critical or high-risk cybersecurity vulnerabilities. […]

What’s in store for Federal cybersecurity policy when the Trump administration takes charge in January? Illumio’s Gary Barlet told us in an exclusive interview that he is looking for much of the current bedrock of cybersecurity policy to carry forward, but with an accelerated timeline for action and greater accountability for results. […]

A new bipartisan bill from Sens. Bill Cassidy, R-La., Maggie Hassan, D-N.H., John Cornyn, R-Texas, and Mark Warner, D-Va., is aiming to bolster cybersecurity in the healthcare sector and safeguard Americans’ health data. […]

The Cybersecurity and Infrastructure Security Agency (CISA) said on Thursday that it recently conducted a red team assessment (RTA) at the request of an unnamed critical infrastructure organization, with mixed results. […]

As cyber threats continue to grow in complexity and scale, artificial intelligence (AI) is emerging as a critical tool for enhancing security, efficiency, and accuracy across Federal agencies, according to Federal cybersecurity experts. […]

Department of Veterans Affairs (VA) Chief Information Officer (CIO) Kurt DelBene told lawmakers on Wednesday that the agency’s cybersecurity capabilities are suffering from a shortage of skilled IT workers that stems from a slim budget to hire enough of them. […]

Industry experts shed more light on the recent Salt Typhoon hacks during a congressional hearing Tuesday as leaders of the Senate Judiciary Subcommittee on Privacy, Technology, and the Law called on the Federal government to “galvanize action now” against the China-linked hacking group’s recent infiltration of commercial telecommunications infrastructure. […]

Just one day after National Cyber Director (NCD) Harry Coker urged Congress to pass bipartisan legislation that would bolster efforts to harmonize cybersecurity regulations across the Federal government, a companion bill was introduced in the House by Rep. Clay Higgins, R-La. […]

As technology evolves, so too do the methods used by criminals. To keep pace with these increasingly sophisticated threats, law enforcement agencies are turning to artificial intelligence (AI) technologies to bolster their investigative capabilities. […]

Former Acting National Cyber Director (NCD) Kemba Walden said on Thursday that the current sector-by-sector assignment of critical infrastructure areas by U.S. regulators is handicapping the Federal government and hindering nationwide cyber resilience. […]

National Cyber Director (NCD) Harry Coker Wednesday urged Congress to pass bipartisan legislation that would bolster the Biden administration’s efforts to harmonize cybersecurity regulations across the Federal government. […]

A top Biden administration cybersecurity official laid out her wish list today for how the incoming Trump-Vance administration should prioritize cybersecurity challenges and regulations. […]

China’s structured and well-funded ecosystem for cyber dominance poses a growing threat to U.S. cybersecurity, a senior Cybersecurity and Infrastructure Security Agency (CISA) official warned, saying the U.S. must continue to foster public-private partnerships and global alliances to defend against those threats.   […]

The Internal Revenue Service (IRS) announced Thursday that it reached a major milestone in fiscal year (FY) 2024 by resolving a longstanding significant deficiency in its information system controls 11 years after it was identified. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has named ECS – an IT systems integrator focused on data and AI, cybersecurity, and enterprise transformation solutions – the prime contractor on a six-year, $528 million task order for CISA’s Continuous Diagnostics and Mitigation (CDM) Program Office. […]

The National Counterintelligence and Security Center (NCSC) within the Office of the Director of National Intelligence released security guidance last week to help protect emerging technology startup companies from threats posed by nation-state actors.   […]