Cybersecurity

Energy to fund 16 infrastructure cybersecurity projects 

The White House’s cybersecurity strategy implementation plan asks the agency to identify pilot projects for energy infrastructure security.

NIST debuts the finalized update to its Cybersecurity Framework

The streamlined blueprint has already gotten positive feedback from private sector organizations.

White House urges software developers to use memory-safe programming languages

A number of headline-making cyberattacks started with memory safety flaws, a White House cyber official said.

New cloud security task force presses for stakeholder accountability

A team convened to focus on cloud security is challenging industry, Congress and the executive branch to address longstanding concerns.

FCC to vote on authorizing cyber labeling rules next month

The move is a major piece of a Biden administration push to bring more cyber transparency to consumer products.

Russian information operations to likely increase in 2024 amid global election activity, CrowdStrike says

The findings should come as no surprise with the advent of generative AI tools, ongoing geopolitical conflicts and a busy year for elections in the U.S. and Europe.

Biden to sign executive order boosting cybersecurity of ports, maritime vessels

The order empowers the Coast Guard to shore up cyber protections for maritime systems and harden current cyber incident reporting rules.

US, international partners disrupt LockBit ransomware operations

Officials have also developed a tool for victims targeted by LockBit to potentially decrypt their compromised data.

The imitation game

The emergence of low-cost deepfakes has led to a high-stakes race to develop technologies that can detect and label synthetic media.

FBI disrupts botnet controlled by Russian security services

The news comes just weeks after the U.S. announced it went on the offensive against a China-linked botnet operation.

Microsoft and OpenAI swept AI chat logs to find hackers. Expect that to become the norm.

Big tech firms and their affiliated cybersecurity or AI offerings will likely roll out similar security research, though some say it raises privacy concerns.

The Pentagon is notifying individuals affected by 2023 email data breach

The exposed contents were not secured with a password at the time of their compromise.

Atlassian vulnerability linked to GAO data breach, CGI Federal says

CISA issued an alert on the vulnerability impacting the Atlassian tool in October of last year.

Some 6,600 current, former employees impacted in January GAO data breach

The breach, which also included some companies doing business with GAO, may further galvanize concerns about the federal government’s ability to defend itself from cyber intrusions.

IARPA makes awards in 4-year effort studying hacker psychology

The program greenlit research contracts for technologies that would use psychology to thwart hackers.

DHS inventory of AI systems for cybersecurity is ‘not accurate’, oversight report says

The report calls on the DHS to better verify its AI inventory submissions and for CISA to develop AI cybersecurity progress metrics.

FCC gives telecom companies 7 days to alert authorities of discovered data breaches

The FCC has been taking sweeping steps to harden data breach rules to protect telecom customers’ data.