Cybersecurity

NSA Employee Leaked Classified Cyber Intel, Charged with Espionage

Former NSA InfoSec Designer Jareh Sebastian Dalke was arrested by the FBI in Denver, Colorado on Wednesday as part of a sting operation.

  • By Alexandra Kelley

Treasury Seeks Comment on How to Structure a Cyber Insurance Program

The Department’s Federal Insurance Office—together with the Cybersecurity and Infrastructure Security Agency—is soliciting feedback in preparation for a report to Congress.

  • By Mariam Baksh

Coast Guard Must Address Cyber Workforce Needs, Watchdog Says

The agency is only fully implementing seven out of 12 best practices, according to the Government Accountability Office.

  • By Kirsten Errick

Senate Legislation to Secure Open Source Software Relies on Transparency Initiative

Success would depend to a significant degree on whether agencies require vendors of information and communications technology to provide a software bill of materials with their products and services.

  • By Mariam Baksh

Over Half of Operating Systems at VA Medical Center in Texas are Outdated, Watchdog Finds

An audit conducted by the VA’s Office of Inspector General found unaddressed security vulnerabilities and deficient devices at the Harlingen VA Health Care Center.

  • By Edward Graham

Watchdog Identifies Multiple Security Deficiencies at VA Medical Center in Louisiana

The VA’s Office of Inspector General found “critical and high-risk vulnerabilities on 37% of the devices” at the Louisiana-based medical center.

  • By Edward Graham

CISA, NSA Guidance Tries to Reduce Alternatives for Securing Industrial Control Systems

Policymakers in Congress and the administration are grappling with how to set a performance bar for companies' mitigation of cyber threats against critical infrastructure they own, while allowing flexibility the companies say is needed to run their operations.

  • By Mariam Baksh

VA ‘Moving Toward Full Compliance’ With Geospatial Data Law, Watchdog Finds

The VA’s Office of Inspector General found said the agency is noncompliant with three of the law’s requirements but is currently in the process of addressing its deficiencies.

  • By Edward Graham

Nuclear Weapon Development and Manufacturing Needs More Cybersecurity, Watchdog Says

The National Nuclear Security Administration, its contractors and subcontractors need to take cyber steps, according to a new report.

  • By Kirsten Errick

DOD’s Digital Threats Are Increasingly Interconnecting, Watchdog Warns

GAO identified six areas that require more oversight, as Defense warfighting operations and national security increasingly hinge on data security.

  • By Alexandra Kelley

Industry Objections Spur Changes to Cybersecurity Provisions in Defense Bill  

Key members of the House and Senate are altering proposals for identifying systemically important critical infrastructure and securing the software supply chain.

  • By Mariam Baksh

Federal Cyber Mandates for Water Infrastructure Are Too Costly to Implement, Experts Say

A House hearing saw expert testimony emphasizing the need for steady funding to cybersecurity programs in water utility providers––especially in rural regions. 

  • By Alexandra Kelley

FCC Adds China-linked Telecom Providers to List of National Security Threats

The departments of Defense and Justice want the agency to take a more comprehensive approach to preventing foreign adversaries from accessing Americans’ communications and data.

  • By Mariam Baksh

Combating Foreign Malign Influence Requires Enhanced Information Sharing

Experts advised the intelligence community to have “more holistic conversations” with the public about the threat landscape.

  • By Edward Graham
Featured eBooks
The IT Modernization Mission
Read Now

Ransomware Threat

Read Now

What's Next For Government Cloud

Read Now

Federal Agencies Exploring Computing at the Edge

Read Now

CISA Plans to Measure the Effect of Coming Standards on Industry’s Cybersecurity

But big companies want to avoid agencies’ use of related performance goals in new regulation.

  • By Mariam Baksh

Federal IT Modernization Fund’s Financial Needs Draw Lawmaker Scrutiny

Federal CIO Clare Martorana said that the government should be operating on the “most modern technology available.”

  • By Kirsten Errick

White House Announces $1B in Cyber Funding for State and Local Governments

The four-year grant program, included in last year’s infrastructure law, will help states and local communities “strengthen their cyber resilience.”

  • By Edward Graham

Defense, Justice Call for FCC Rulemaking to Secure Internet Routing, Opposing NTIA

The departments cited comments from the Cybersecurity and Infrastructure Security Agency and said a regulatory approach would have a greater impact “industry-wide” than dealing with entities case-by-case.

  • By Mariam Baksh

Whole-of-Government Effort Targets Iranian Hackers

An unsealed indictment from the Department of Justice accompanied  sanctions and an advisory with international allies warning against government-linked Iranian hackers.

  • By Alexandra Kelley

Social Media’s National Security Implications Draw Lawmaker Scrutiny

Senate Homeland Security Committee members grilled social media executives about their content moderation practices and ties to foreign adversaries.

  • By Edward Graham

OMB: New Acquisition Rule Coming for Vendors to Vouch for Their Software Security

Agencies are also allowed to accept to-do lists from vendors who need to keep working up to a point where they can self-attest their compliance with NIST guidance.

  • By Mariam Baksh