Cybersecurity

NIST issues updated cyber guides focused on assessments and communication

Two new volumes were released by the National Institute of Standards and Technology that aim to broaden the publication’s applicability to organizations outside federal agencies.

Chinese telecom espionage began with ‘much broader’ aims, officials say

The U.S. has been investigating the Salt Typhoon hackers since late spring and early summer this year, a senior FBI official said.

US proposes rule to prevent the sale of financial data to foreign adversaries

Data brokers would have to comply under terms set by the Fair Credit Reporting Act, in an effort that aims to stop exploitation of Americans’ data overseas.

Lawmakers want to enhance HHS cyber engagement with health care orgs

The bipartisan proposal, introduced by Sen. Bill Cassidy, R-La., came out of the efforts of a working group focused on protecting medical institutions from digital attacks.

Chinese hackers used a ‘range of sophisticated methods’ to breach US telecom providers, insider says

Salt Typhoon deployed various methods to break into telecommunications firms that went far beyond a singular run-of-the-mill credential-stealing attempt, according to a person familiar.

White House convened telecom leaders as details of Chinese espionage hack unfold

Many of the breached systems were not properly equipped with tools that recorded network activity, making it harder to quickly trace the origins of the hack, a person familiar said.

FCC leaders skirt call for wiretap security reform, hope to ‘go deeper’ on telecom breach briefings

Lawmakers have called on the agency to take up a rulemaking to rethink wiretapping laws amid the hacks that have ensnared several telecom companies, but top FCC officials have not signaled any forthcoming action yet.

New TSA cyber rules leave lawmakers, industry hopeful for happy medium regulations

The agency argues its Nov. 8 proposed rulemaking will dually address the transportation industry’s regulation concerns while ensuring they’re suitably protected from hackers. Others want to wait and see.

Hackers nabbed emails between congressional staff and Library of Congress 

Affected staff were notified Friday afternoon, according to an internal email. Capitol Hill communications with the Congressional Research Service frequently involve confidential legislative drafts or policies still in the brainstorming stage.

FCC to soon announce lead administrator for cyber assurance program

More information will also be unveiled during the 2025 CES, Deputy National Security Advisor Anne Neuberger said.

HHS has still not addressed key cyber recommendations, GAO says

The Government Accountability Office said its unaddressed cyber guidance can result “in potential adverse impact on healthcare providers and patient care.”

US still backs UN cyber pact, but final approval awaits human rights safeguards

Some fear the convention would help legitimize authoritarian nations’ surveillance policies. The U.S. won’t formally ratify it until it sees human rights assurances.

Exclusive

DHS issues internal comms guidance amid telecom breach investigation

The DHS Cyber Safety Review Board is already slated to investigate the hacking collective, dubbed Salt Typhoon, and its intrusion into telecommunications firms and wiretap infrastructure.

Veterans’ military skills can help them fill cyber vacancies, State official says

The White House’s national cybersecurity strategy said that greater veteran participation in the U.S. cyber workforce can help enhance critical digital defenses.

Intelligence community briefed Congress on Chinese telecom intrusions

It’s believed the hackers, dubbed Salt Typhoon, accessed call records on numerous Americans, including officials and staff affiliated with President-elect Trump.

Will cyber suffer under Trump’s goal to slash federal budgets?

Donald Trump’s intent to cut agency budgets has sparked concerns over adequate cybersecurity funding for government networks. Some believe these fears may be overstated.

CISA has no data supporting claims of election cheating, official says

Baseless voting fraud claims were pushed by Donald Trump in 2020 and the final weeks of his presidency.