Cybersecurity
Commerce revises export rules to boost U.S. standards development on critical tech
The original rule—which banned certain entities from receiving U.S. exports—endangered U.S. participation in international standards bodies where such entities are present, opponents said.
Cybersecurity
How NSA plans to shield high-impact systems against quantum threats
The National Security Agency started the clock on a long-planned transition to quantum-resistant algorithms in key national security systems.
Cybersecurity
Traffic Safety Agency Issues Final Guidelines for Vehicle Cybersecurity
The National Highway Traffic Safety Administration will announce its final cybersecurity guidelines draft Friday as modern vehicles become more technologically-integrated.
Cybersecurity
NSA Releases Post-Quantum Algorithms, Aims for Full Implementation by 2035
The National Security Agency worked in conjunction with NIST to prepare stakeholders for upcoming quantum cryptographic requirements.
Cybersecurity
Iranian hacker group posed as journalists to hunt dissidents
Group spent weeks trying to fool specific targets with intricate appeals—including U.S campaign staff.
Cybersecurity
CISA teases strategy to protect critical infrastructure
The Cybersecurity and Infrastructure Security Agency will soon release a sweeping plan to bolster cybersecurity protections for the nation's critical infrastructure industries.
Cybersecurity
White House Attributes Attack on Albania’s Critical Infrastructure to Iran
A statement from the National Security Council noted the potential for deviations from international norms to escalate conflict and promised accountability.
Cybersecurity
Army Updates Cyber Training After Some Graduates Weren’t Ready for Their Jobs
New classes and updated curriculum reflect evolving threats and lessons from the Ukraine war.
Cybersecurity
Treasury Reissues Rules to Enforce Cyber Sanctions on Foreign Adversaries
The rules could apply to any new executive order related to the national security emergency President Obama declared in 2015, in advance of a cybersecurity agreement with China.
Cybersecurity
NTSB Only Federal Agency Lacking a CISA-Mandated Vulnerability Disclosure Policy
CISA’s 2020 directive required that federal agencies under its authority develop policies allowing researchers to report bugs and flaws in public-facing systems.
Cybersecurity
New Guide to Secure Software Development Passes on Content but Fails on Communication, Industry Official Says
The lengthy document may miss its target audience altogether, one industry observer notes.
Cybersecurity
GSA Seeks Info on Automated and Expert Tools to Analyze Application Security
The agency requested details on the tools available to address weaknesses in the applications and testing process, in an effort to boost security measures.
Cybersecurity
Election Officials Have Been Largely Successful in Deterring Cyber Threats, CISA Official Says
The head of CISA’s National Risk Management Center pointed to public-private partnerships and enhanced resource sharing activities as key to defending against outside threats to voting systems.
Cybersecurity
CFPB warns firms on poor cyber hygiene
The agency says that bad password and data management and other practices can expose companies to legal consequences.
Cybersecurity
NIST to Launch New Guidance on Security Risks of Telehealth and Smart Home Integration
The agency notes that “user experience” improvements may come with less control over privacy and security.
Cybersecurity
Housing agency didn't complete cyber orders from DHS, report says
The agency said that some of its websites failed to comply with binding operational directives from the Department of Homeland Security.
Cybersecurity
NSA, CISA and ODNI release new software supply chain guidelines for developers
An interagency, public-private working group “strongly encouraged” software developers to begin implementing a suite of best practices aimed at further securing the software development lifecycle.
Cybersecurity
National Cyber Director’s Office Elevates Key Personnel
Nick Leiserson helped develop legislation that created the cyber director’s office. A year after its establishment, he’s moving to a position where he can use it to shape policy.
Exclusive
Cybersecurity
Much-hyped Effort to Help DHS Land Cyber Talent is Slow to Make Hires
So far about four hires have been made under the Cybersecurity Talent Management System, with the agency hoping to make offers to 150 new cyber specialists by the end of September.
Cybersecurity