Cybersecurity

Program Under Defense Innovation Unit Is Launching a New Consortium

The Institute for Nascent Innovations will look to identify and solve unseen issues in emerging crises.

The Need for Unified Data Protection in the U.S.

Innovative businesses should be fighting to get federal privacy legislation to get the most out of data while simultaneously protecting customer information.

CISA Orders Immediate Action to Fix Vulnerability in Windows Directory

The agency has seen code designed to exploit the vulnerability in a system used to permit access to network resources.

Commerce Department to Bar TikTok, WeChat from U.S. App Stores

The Commerce Department announced a list of prohibitions meant to protect U.S. national security against the two Chinese-owned apps.

How Good Is Your Phishing Training? NIST Launched a Tool to Figure That Out.

Researchers are looking to pool more data from outside organizations to further refine it.

CISA Data Shows Federal Civilian Agencies Faster Than Industry at Patching

The nation’s risk adviser continues to expand its role in what it’s dubbed the year of vulnerability management.

FBI Fights Intellectual Property Theft from University Offices

Director Christopher Wray noted the importance of attribution in the bureau’s strategy amid growing difficulty investigating cyber crime.

Faked Videos Shore Up False Beliefs about Biden's Mental Health

These deceptively altered videos have become a major element of disinformation campaigns that wield falsehoods in an effort to sway voters.

GAO: Majority of Agencies Use Connected Devices But Hurdles Remain

Agencies frequently run into cybersecurity questions and interoperability issues when implementing the internet of things.

Bill Would Prompt USDA Intelligence Office to Probe Foreign Threats to America’s Agriculture

The legislation comes amid reports of Americans receiving and planting unsolicited “mystery seeds” reportedly arriving from China.

Justice Department Charges 5 Chinese Nationals with Hacking More than 100 Companies

Two Malaysian businessmen also were arrested in Malaysia and face extradition in related charges.

Interior IG Team Used Evil Twins and $200 Tech to Hack Department Wi-Fi Networks

A team of hackers was able to gain access to Interior networks using publicly available equipment, open source software and a backpack.

CISA, FBI Warn Iran-based Threat Actor May Be Planning Ransomware Attacks 

The attacker is targeting virtual private networks and cloud computing vulnerabilities, and has been present in victim networks for several months.

The Path Toward a Holistic Zero Trust Architecture

The Defense Department's anticipated guidelines should inspire more organizations to follow such a model, moving zero trust from a buzzword to reality. 

What's Next for the House-Passed IoT Security Bill

Some security professionals point to broad exemptions in the Senate version of the legislation that could undermine the effort to guide federal procurement decisions.

Wanted: Poll Workers Able to Brave the Pandemic

Election officials in many states are anticipating severe shortages of people to run the polls on Nov. 3.

When You Can’t Add Cybersecurity Staff, Build Cyber-Resiliency Instead

But organizations should be careful that they aren’t just throwing additional, sophisticated tools at existing employees to solve the problem.