Cybersecurity
China is using advanced ‘Brickstorm’ malware against government and IT orgs, US assesses
The malware was detected in the recently disclosed breach of F5, an application delivery and security provider.
Cybersecurity
CISA tells staff to not speak with reporters, internal email shows
“CISA does not comment on leaked internal emails, especially when they’re about leaking internal emails,” CISA Director of Public Affairs Marci McCarthy told Nextgov/FCW when asked for comment.
Cybersecurity
New bill proposes government-wide processes to attribute, sanction hackers
The measure would permit “robust sanctions against designated actors, including asset blocking, financial restrictions, export controls, procurement prohibitions, visa bans and suspension of assistance.”
Cybersecurity
SEC to drop high-profile SolarWinds hack lawsuit
The landmark lawsuit garnered pushback from dozens of cybersecurity leaders last year.
Cybersecurity
FCC votes to reverse telecom security rulemaking issued under Biden
The vote has drawn significant concern from congressional Democrats, who say it will weaken the security posture of telecom systems. The initial measure was enacted in response to Chinese hacks of U.S. telecom providers discovered last year.
Cybersecurity
Senators expect 10-year extension of cyber data-sharing law in future budget package
The Cybersecurity Information Sharing Act of 2015 got a temporary reprieve after the government reopened this month, but it risks lapsing again at the end of January.
Cybersecurity
House votes to reup cyber grant program
Lawmakers approved a measure to reauthorize the State and Local Cybersecurity Grant Program for 10 years. It now moves to the Senate.
Cybersecurity
National cyber strategy coming ‘as quickly as possible,’ official says
“It’s going to be a short statement of intent and policy, and then it will be paired very quickly with action items and deliverables under that,” National Cyber Director Sean Cairncross explained.
Cybersecurity
Dem lawmakers renew calls for release of delayed telecom security report
In a letter to DHS and ODNI, Sens. Ron Wyden of Oregon and Mark Warner of Virginia said the release of a 2022 report detailing cyber vulnerabilities in the U.S. telecommunications sector is “critically important to U.S. national security.”
Cybersecurity
Government funding deal reups cyber grant program
Lawmakers reauthorized the State and Local Cybersecurity Grant Program as part of the deal to reopen the federal government, but funding remains an open question.
Cybersecurity
CMMC enforcement begins after eight years of warnings
"There is no excuse for industry to not be ready," observers say as enforcement begins.
Cybersecurity
Bill to end shutdown includes temporary cyber info-sharing law extension
The Cybersecurity Information Sharing Act of 2015 expired when the government’s calendar reset without a funding package for FY 2026.
Cybersecurity
CBO systems accessed in ‘security incident’ possibly tied to foreign hackers
The office estimates the cost and economic impact of proposed legislation and helps forecast federal spending, revenues, deficits and debt.
Cybersecurity
FCC to vote on reversing telecom security rulemakings next month
The initial measures proposed at the end of the Biden administration came in response to the Salt Typhoon telecom hacks carried out by China.
Cybersecurity
AI has leveled the field between cybercriminals and nation-state hackers, FBI official says
The FBI is slower to adopt AI tools due to the sensitive nature of the data that it works with, Brett Leatherman, the FBI Cyber Division head, said.
Cybersecurity
Upcoming White House cyber strategy to seek more involvement with private sector
The Trump 2.0 cyber strategy is in development, National Cyber Director Sean Cairncross said, though he did not elaborate on when it would be released.
Cybersecurity
CyberCorps talent pipeline buckles under Trump hiring freezes
The cornerstone program for training and placing student talent into government cybersecurity positions has been hobbled by recent federal employment logjams, jeopardizing workforce pipelines and leaving many recruits burdened by debt.
Cybersecurity
UN cybercrime treaty enables authoritarian regimes, top think tank argues
The agreement is scheduled to be signed in Vietnam next week, but the concept has raised concerns for some time.
Cybersecurity
US cyber policy goals have regressed during Trump 2.0 in ‘unprecedented setback,’ landmark report says
Cuts to various agencies and the politicization of disinfo-tracking work have slowed implementation goals set out five years ago by a congressionally authorized cybersecurity policy group.
Exclusive
Cybersecurity