Cybersecurity
New Report Shows Significant Improvement in Consumer Cyber Hygiene
Senior administration officials and cybersecurity leaders marking Cybersecurity Awareness Month weighed in on a consumer survey examining how behaviors have changed over the last three years.
Cybersecurity
National Cybersecurity Review Begins for All Levels of Government
Answering the survey—based on the National Institute of Standards and Technology’s cybersecurity framework—is mandatory for certain grant recipients.
Cybersecurity
CISA orders agencies to conduct weekly scans of networks and digital assets
The Cybersecurity and Infrastructure Security Agency is taking a major step towards increasing its visibility into the risks facing federal networks.
Cybersecurity
Senators’ Plan to Secure Open Source Software Involves Agencies Using More of It
The discovery of exploitable weaknesses in Log4j is resurfacing a 6-year-old push to save taxpayers money by calling on agencies to embrace open-source code.
Digital Government
NSA Employee Leaked Classified Cyber Intel, Charged with Espionage
Former NSA InfoSec Designer Jareh Sebastian Dalke was arrested by the FBI in Denver, Colorado on Wednesday as part of a sting operation.
Cybersecurity
Treasury Seeks Comment on How to Structure a Cyber Insurance Program
The Department’s Federal Insurance Office—together with the Cybersecurity and Infrastructure Security Agency—is soliciting feedback in preparation for a report to Congress.
Cybersecurity
CISA launches DNS resolution shared service
The nation's cyber defense agency is launching a new shared service offering for all federal civilian agencies to bolster governmentwide cybersecurity and help thwart emerging internet traffic threats.
Cybersecurity
Coast Guard Must Address Cyber Workforce Needs, Watchdog Says
The agency is only fully implementing seven out of 12 best practices, according to the Government Accountability Office.
Cybersecurity
Senate Legislation to Secure Open Source Software Relies on Transparency Initiative
Success would depend to a significant degree on whether agencies require vendors of information and communications technology to provide a software bill of materials with their products and services.
Cybersecurity
The U.S. is the top target of ransomware attacks, report says
The majority of ransomware attacks worldwide targeted industries that play a "critical role" in domestic and international supply chains, according to new research.
Cybersecurity
Over Half of Operating Systems at VA Medical Center in Texas are Outdated, Watchdog Finds
An audit conducted by the VA’s Office of Inspector General found unaddressed security vulnerabilities and deficient devices at the Harlingen VA Health Care Center.
Cybersecurity
Watchdog Identifies Multiple Security Deficiencies at VA Medical Center in Louisiana
The VA’s Office of Inspector General found “critical and high-risk vulnerabilities on 37% of the devices” at the Louisiana-based medical center.
Cybersecurity
Watchdog dings IRS for vendor security lapses
Outdated antivirus software and missing security logs created risks for a key IRS communications platform, according to an inspector general report.
Cybersecurity
CISA, NSA Guidance Tries to Reduce Alternatives for Securing Industrial Control Systems
Policymakers in Congress and the administration are grappling with how to set a performance bar for companies' mitigation of cyber threats against critical infrastructure they own, while allowing flexibility the companies say is needed to run their operations.
Digital Government
VA ‘Moving Toward Full Compliance’ With Geospatial Data Law, Watchdog Finds
The VA’s Office of Inspector General found said the agency is noncompliant with three of the law’s requirements but is currently in the process of addressing its deficiencies.
Cybersecurity
Nuclear Weapon Development and Manufacturing Needs More Cybersecurity, Watchdog Says
The National Nuclear Security Administration, its contractors and subcontractors need to take cyber steps, according to a new report.
Cybersecurity
DOD’s Digital Threats Are Increasingly Interconnecting, Watchdog Warns
GAO identified six areas that require more oversight, as Defense warfighting operations and national security increasingly hinge on data security.
Cybersecurity
Industry Objections Spur Changes to Cybersecurity Provisions in Defense Bill
Key members of the House and Senate are altering proposals for identifying systemically important critical infrastructure and securing the software supply chain.
Cybersecurity
Federal Cyber Mandates for Water Infrastructure Are Too Costly to Implement, Experts Say
A House hearing saw expert testimony emphasizing the need for steady funding to cybersecurity programs in water utility providers—especially in rural regions.
Cybersecurity