Cybersecurity
How International Acquisitions Can Become a Cybercrime Frontier
Public entities like the FBI and Department of Treasury are carefully monitoring international business transactions as potential backdoor threats to U.S. national security.
Cybersecurity
‘Multiple Threat Actors’ Used Old Exploit to Access Federal Agency Servers
At least two groups tried to exploit the vulnerability to get deeper into the agency’s networks, including a Vietnamese criminal gang.
Cybersecurity
Government employees and defense contractors still have got bad passwords, report says
According to new research, a majority of government employees with exposed passwords were found to have reused them across multiple accounts.
Cybersecurity
NSA offers new tips on zero trust and identity
Weaknesses in identity and access controls are allowing cyber attacks to happen, NSA officials say. A new tip sheet is meant to help national security systems mature their controls.
Cybersecurity
CISA Launches Ransomware Warning Pilot for Critical Infrastructure
The new pilot program will enable “timely risk reduction” by alerting critical infrastructure owners and operators of vulnerabilities within their systems that are susceptible to ransomware attacks.
Emerging Tech
GAO Offers Quantum Guidance to Federal Agencies
As the federal government continues its push for mass post-quantum cryptography transitions, the Government Accountability Office offered fact-based summary and guidance.
Cybersecurity
Defense Unveils New Cyber Workforce Strategy
The strategy is focusing on four human capital pillars with six initiatives to build a robust workforce ready for current and future threats.
Cybersecurity
Report: Increased Remote Work for Many Governments Also Raises Cyber Risks
Roughly one-third of government employees believe “their actions don’t matter when it comes to security,” according to a new survey.
Cybersecurity
New bills look to help small water systems tap cybersecurity help
New legislation looks to set aside $10 million to help subsidize fees for small utilities to join the Water Information Sharing and Analysis Center.
Cybersecurity
Lawmaker and Staffer Health Data Exposed in Insurance Breach
The attack on local insurance company DC Health Link threatens to expose personal information of House lawmakers and Hill staffers.
Cybersecurity
TSA issues cybersecurity amendment for aviation industry
The Transportation Security Administration has released a series of new performance-based cybersecurity measures for the aviation industry just days after the White House released its national cybersecurity strategy.
Cybersecurity
CISA still has work to do to fix agency weaknesses revealed by SolarWinds, watchdog says
A new report from the Department of Homeland Security’s inspector general details recommendations for CISA’s network visibility and threat detection tech, workforce and more.
Cybersecurity
USCYBERCOM’s Operations Have Strengthened Allies, Agency Lead Says
Gen. Paul Nakasone, commander of U.S. Cyber Command, told members of the Senate Armed Services Committee that the agency’s cyber partnerships have helped to build “tremendous confidence between nations.”
Cybersecurity
NIST Renews Cyber Center Partnership, Launches Small Business Focus
The agency renewed its partnerships that support the National Cybersecurity Center of Excellence and launched the NIST Small Business Cybersecurity Community of Interest.
Cybersecurity
Lawmaker: Schools Need Federal Advocate to Negotiate Cyber Contracts
Sen. Ron Wyden penned a letter to Education Secretary Miguel Cardona, asking the agency to assist U.S. schools in drafting cybersecurity and data protection contracts with technology firms.
Cybersecurity
State Should Evaluate Global Anti-Cybercrime Efforts, GAO Says
A watchdog report said the State Department should take the lead in determining the effectiveness of federal agencies’ partnerships with international allies to combat digital crimes.
Cybersecurity
Ransomware Payments Decreased in 2022 as Criminals Used Other Extortion Tactics
A report from Recorded Future found that, even as ransomware continues to pose a global challenge for individuals and organizations, threat actors are increasingly using other methods to steal sensitive data and demand payments from victims.
Cybersecurity
EPA Releases Water Systems Cyber Requirement in Tandem with National Strategy
The Environmental Protection Agency unveiled new cybersecurity guidelines to help states evaluate their water sanitation systems’ defenses.
Cybersecurity
Tech trade group leery of new regulations proposed in Biden's cyber strategy
The new national cybersecurity strategy calls for software providers to be held accountable for vulnerabilities in their products – a fundamental shift in approach that sparked concerns among some technology associations and firms.
Cybersecurity