Cybersecurity
Sen. Cotton urges top White House cyber official to protect open-source software
A letter from the chairman of the Senate Intelligence Committee cites previous Nextgov/FCW reporting about a potential Russian backdoor into a Defense Department software suite.
Cybersecurity
Potential NSA, Cyber Command leader nomination transmitted to Senate
The signals intelligence titan and combatant command have been without a permanent leader for months since far-right activist Laura Loomer pushed for the firing of Gen. Timothy Haugh in April.
Cybersecurity
Rep. Garbarino ‘disappointed’ Senate hasn’t approved Trump’s CISA nominee
The House Homeland Security Committee chairman also questioned a recent FCC vote to reverse telecom security rules put in place after a major Chinese cyber intrusion.
Cybersecurity
Trump admin to revisit bedrock cyber policies as it implements new strategy
Corresponding executive actions on cybercrime and ransomware are in the works. The forthcoming cyber strategy also includes an offensive pillar focused on “preemptive erosion” of foreign adversaries’ hacking attempts.
Cybersecurity
Cyber takes back seat to immigration in global threats hearing
Witnesses briefly touched on concerns about encrypted messaging and the threat China poses in cyberspace, as well as efforts to protect infrastructure that supports the worldwide internet.
Cybersecurity
US charges former Accenture employee with misleading feds on cloud platform’s security
Danielle Hillmer, most recently employed with SentinelOne, allegedly concealed a cloud product’s noncompliance with federal security regulations.
Cybersecurity
Defense authorization bill includes billions for cyber, intelligence matters
The NDAA notably deviates partly from President Donald Trump’s national security strategy, which seeks some distance between the U.S. and Europe. It also makes a sweeping regulatory harmonization demand.
Cybersecurity
Trump’s national security strategy wants spy agencies to watch world supply chains
The paper puts much of its emphasis on the Western Hemisphere, while pushing for closer cyber collaboration with both regional partners and the private sector.
Cybersecurity
China is using advanced ‘Brickstorm’ malware against government and IT orgs, US assesses
The malware was detected in the recently disclosed breach of F5, an application delivery and security provider.
Cybersecurity
CISA tells staff to not speak with reporters, internal email shows
“CISA does not comment on leaked internal emails, especially when they’re about leaking internal emails,” CISA Director of Public Affairs Marci McCarthy told Nextgov/FCW when asked for comment.
Cybersecurity
New bill proposes government-wide processes to attribute, sanction hackers
The measure would permit “robust sanctions against designated actors, including asset blocking, financial restrictions, export controls, procurement prohibitions, visa bans and suspension of assistance.”
Cybersecurity
SEC to drop high-profile SolarWinds hack lawsuit
The landmark lawsuit garnered pushback from dozens of cybersecurity leaders last year.
Cybersecurity
FCC votes to reverse telecom security rulemaking issued under Biden
The vote has drawn significant concern from congressional Democrats, who say it will weaken the security posture of telecom systems. The initial measure was enacted in response to Chinese hacks of U.S. telecom providers discovered last year.
Cybersecurity
Senators expect 10-year extension of cyber data-sharing law in future budget package
The Cybersecurity Information Sharing Act of 2015 got a temporary reprieve after the government reopened this month, but it risks lapsing again at the end of January.
Cybersecurity
House votes to reup cyber grant program
Lawmakers approved a measure to reauthorize the State and Local Cybersecurity Grant Program for 10 years. It now moves to the Senate.
Cybersecurity
National cyber strategy coming ‘as quickly as possible,’ official says
“It’s going to be a short statement of intent and policy, and then it will be paired very quickly with action items and deliverables under that,” National Cyber Director Sean Cairncross explained.
Cybersecurity
Dem lawmakers renew calls for release of delayed telecom security report
In a letter to DHS and ODNI, Sens. Ron Wyden of Oregon and Mark Warner of Virginia said the release of a 2022 report detailing cyber vulnerabilities in the U.S. telecommunications sector is “critically important to U.S. national security.”
Cybersecurity
Government funding deal reups cyber grant program
Lawmakers reauthorized the State and Local Cybersecurity Grant Program as part of the deal to reopen the federal government, but funding remains an open question.
Cybersecurity
CMMC enforcement begins after eight years of warnings
"There is no excuse for industry to not be ready," observers say as enforcement begins.
Cybersecurity