Cybersecurity

Trump Executive Order Attempts to Ban 8 More Chinese Apps

The move adds more Chinese companies—including three payment apps—to a list that already included TikTok and WeChat.

Cybersecurity

CISA: Hackers access to federal networks without SolarWinds

The Cybersecurity and Information Security Agency said on Jan. 6 that there is evidence of suspected hackers are breaching federal networks without exploiting a recently discovered flaw in SolarWinds Orion product.

Cybersecurity

The Hack Roundup: Justice Department Confirms Email Breach

During an extraordinary day of unrest in the Capitol, here are the news and updates you may have missed.

Cybersecurity

DOJ says it was hit by SolarWinds hackers

The Justice Department today said hackers likely accessed about 3% of email inboxes.

Cybersecurity

Trump Plan for Maritime Cybersecurity Would Introduce Procurement Requirements

The outgoing administration added items to federal agencies’ to-do lists, noting rising threats to the sector.

Cybersecurity

Russia ‘Likely’ Behind Widespread Hack, Cyber Response Agencies Say

The Cyber Unified Coordination Group believes fewer than ten government agencies were compromised in what is an ongoing intelligence operation.

Cybersecurity

Government Watchdogs Launch Cyber-Threat Sharing Assessment

In the wake of the recent hack, Microsoft President Brad Smith said contractual obligations hurt cross-government sharing following breaches.

Cybersecurity

White House task force says Russia likely to blame for SolarWinds hack

The Cyber Unified Coordination Group said in a statement on Tuesday that fewer than 10 government agencies have been "compromised by follow-on activity" on federal systems as a result of the hack.

Modernization

10 of 15 of DOD’s Major IT Projects Are Behind Schedule, GAO Found

Lack of talent is one of the key reasons Defense officials cited for shortfalls implementing cybersecurity best practices. 

Cybersecurity

Investor launches class-action lawsuit against SolarWinds over hack

SolarWinds is facing a class-action lawsuit in a Texas court from an investor who says the company misled the public and its customers by not disclosing a known vulnerability to its update server.

Cybersecurity

CMMC: The Dramatic Year of the Pentagon’s Contractor Cybersecurity Program

The Defense Department’s main effort to protect its supply chain from cyber threats charged ahead through the pandemic but not without controversy.  

Ideas

Next-Generation Program Protection: The Next Federal Cybersecurity Challenge

As the government aims to buy more innovative products, we must make critical advancements in program protection. 

Cybersecurity

Hack Spurs Call for Greater—but Measured—Supply Chain Scrutiny 

Operational cybersecurity hygiene is one thing, criteria for using open-source code is another, one expert says. 

Cybersecurity

The Hack Roundup: Biden Says Obstructed Transition 'Nothing Short of Irresponsible'

Here are the news and updates you may have missed. 

Ideas

In a Zero Trust World, Compliance Doesn’t Equal Security

An agency can run a completely compliant network and still be breached by a trusted user’s account being exposed.

Digital Government

The Tech Policies the Trump Administration Leaves Behind

Nextgov looks back at the Trump administration's major IT policy moves that will have lasting effects on federal technology for the foreseeable future.

Modernization

Defense, Intelligence Agencies Made Major Moves in Cloud in 2020

After bid protests and litigation, some of the largest cloud contracts the government has attempted can get underway. 

Cybersecurity

IRS IG: No taxpayer data exposed by hack

The IRS inspector general's letter to lawmakers backs up a statement offered by a senior Democratic senator earlier this week.

Cybersecurity

Former Presidential Adviser Advocates Tougher Software Vendor Standards After Breach

The environment where updates for the company’s software were developed was reportedly protected by a password anyone could guess.