Cybersecurity
White House looks to advance cyber safety labeling effort with 'initial scope' next spring
A senior administration official said the White House is beginning with a label that will focus on some of the most at-risk technologies – and that the National Institute of Standards and Technology will play a major role in getting it done.
Cybersecurity
Can Service Meshes Help Bring Legacy Government Applications into Zero Trust?
The Biden administration’s imperative to move to zero trust could prove challenging for agencies with still-functional legacy systems.
Cybersecurity
NSA Advocates Active Defense, as Industry Lawyer Advises Against Incident Reports
Speakers at a new conference hosted by cybersecurity firm Mandiant highlighted the challenge the government faces in motivating companies to report attacks on critical infrastructure.
Cybersecurity
Cyber Talent Still in High Demand
In the last 12 months, more than 769,000 cyber job postings went up in the United States.
Cybersecurity
How the FBI stumbled in the war on cybercrime
Although cyberattacks were becoming more sophisticated, FBI officials told counterparts at DHS and elsewhere in the federal government that ransomware wasn’t a priority.
Cybersecurity
Labor Group Highlights Conflict of Interest Issues in Cyber Workforce Legislation
The federal workers union wrote to senators opposing an amendment to the NDAA that would establish a civilian reserve at CISA.
Cybersecurity
Malign Influence Operations Increasing Ahead of Midterms, Report Finds
A report from cybersecurity firm Recorded Future found that nation-state adversaries and domestic extremists are engaged in efforts to influence the outcome of the November elections.
Cybersecurity
Commercial Availability, Consequences Best Approach for Post-Quantum Transition
Ann Cox, the lead at the Department of Homeland Security’s research office, emphasized community engagement and technological needs for a successful quantum-resilient future.
Cybersecurity
White House preps security controls for commercial software acquisition
The administration is attempting to leverage the procurement powers of the federal government to bolster software cybersecurity for the first time.
Cybersecurity
4 Critical Infrastructure Sectors to Get New Cyber Rules, Per White House Official
The deputy national security advisor for cyber and emerging tech said it should be up to sector-specific agencies to decide who should implement appropriate cybersecurity defenses.
Cybersecurity
Lessons from China’s Cyberattack Strategy Can Help CISOs Better Manage Threats, Report Says
A new report from Booz Allen Hamilton analyzed more than a dozen Chinese-sponsored cyberattacks over the past decade.
Cybersecurity
White House's Internet of Things Security Initiative Gets an Official Meeting Date
The meeting was announced as the administration prepared to release its long awaited national security strategy.
Cybersecurity
Malicious Emails Surged for Election Workers in 2 Battleground States Ahead of Primaries
Research conducted by cybersecurity firm Trellix found that county election workers in Arizona and Pennsylvania saw an increase in phishing schemes ahead of their primary elections.
Cybersecurity
Why CISA Won’t Release ‘Public’ Comments on Upcoming Performance Goals
CISA officials often stress their non-regulatory role, but Congress keeps trying to give the agency regulatory responsibilities.
Policy
Social Media Content Regulation Requires G7 Consensus, Think Tank Says
The Information Technology and Innovation Foundation said a U.S.-led forum could develop “a set of voluntary, consensus-based guidelines” for social media platforms to use when moderating user-generated content.
Cybersecurity
White House plans cyber labeling system for IoT devices
A consumer-focused cyber labeling scheme may be put into play after years on the drawing board.
Cybersecurity
Are software bills of materials ready for prime time?
There's legislation afoot to require SBOMs in government procurement and industry is pushing back.
Cybersecurity
CISA Announces DC Event for Public Input on Incident Reporting Regulations
The effort aims to give officials a greater understanding of cyber threats and the ability to defend U.S. critical infrastructure against cascading impacts when attacks occur.
Cybersecurity
CISA and FBI Say Malicious Cyber Activity is Unlikely to Compromise Election Infrastructure
The joint public service announcement said “extensive safeguards in place” make it difficult for bad actors to interfere in upcoming midterm elections.
Cybersecurity