Cybersecurity
Malicious Emails Surged for Election Workers in 2 Battleground States Ahead of Primaries
Research conducted by cybersecurity firm Trellix found that county election workers in Arizona and Pennsylvania saw an increase in phishing schemes ahead of their primary elections.
Cybersecurity
Why CISA Won’t Release ‘Public’ Comments on Upcoming Performance Goals
CISA officials often stress their non-regulatory role, but Congress keeps trying to give the agency regulatory responsibilities.
Policy
Social Media Content Regulation Requires G7 Consensus, Think Tank Says
The Information Technology and Innovation Foundation said a U.S.-led forum could develop “a set of voluntary, consensus-based guidelines” for social media platforms to use when moderating user-generated content.
Cybersecurity
White House plans cyber labeling system for IoT devices
A consumer-focused cyber labeling scheme may be put into play after years on the drawing board.
Cybersecurity
Are software bills of materials ready for prime time?
There's legislation afoot to require SBOMs in government procurement and industry is pushing back.
Cybersecurity
CISA Announces DC Event for Public Input on Incident Reporting Regulations
The effort aims to give officials a greater understanding of cyber threats and the ability to defend U.S. critical infrastructure against cascading impacts when attacks occur.
Cybersecurity
CISA and FBI Say Malicious Cyber Activity is Unlikely to Compromise Election Infrastructure
The joint public service announcement said “extensive safeguards in place” make it difficult for bad actors to interfere in upcoming midterm elections.
Cybersecurity
GAO: Communication Breakdowns Hurt Otherwise Positive View of Federal Ransomware Support
State, local, tribal and territorial governments have “generally positive views” of agencies’ ransomware assistance, but cited “inconsistent communication” from the FBI as a challenge.
Cybersecurity
New Report Shows Significant Improvement in Consumer Cyber Hygiene
Senior administration officials and cybersecurity leaders marking Cybersecurity Awareness Month weighed in on a consumer survey examining how behaviors have changed over the last three years.
Cybersecurity
National Cybersecurity Review Begins for All Levels of Government
Answering the survey—based on the National Institute of Standards and Technology’s cybersecurity framework—is mandatory for certain grant recipients.
Cybersecurity
CISA orders agencies to conduct weekly scans of networks and digital assets
The Cybersecurity and Infrastructure Security Agency is taking a major step towards increasing its visibility into the risks facing federal networks.
Cybersecurity
Senators’ Plan to Secure Open Source Software Involves Agencies Using More of It
The discovery of exploitable weaknesses in Log4j is resurfacing a 6-year-old push to save taxpayers money by calling on agencies to embrace open-source code.
Digital Government
NSA Employee Leaked Classified Cyber Intel, Charged with Espionage
Former NSA InfoSec Designer Jareh Sebastian Dalke was arrested by the FBI in Denver, Colorado on Wednesday as part of a sting operation.
Cybersecurity
Treasury Seeks Comment on How to Structure a Cyber Insurance Program
The Department’s Federal Insurance Office—together with the Cybersecurity and Infrastructure Security Agency—is soliciting feedback in preparation for a report to Congress.
Cybersecurity
CISA launches DNS resolution shared service
The nation's cyber defense agency is launching a new shared service offering for all federal civilian agencies to bolster governmentwide cybersecurity and help thwart emerging internet traffic threats.
Cybersecurity
Coast Guard Must Address Cyber Workforce Needs, Watchdog Says
The agency is only fully implementing seven out of 12 best practices, according to the Government Accountability Office.
Cybersecurity
Senate Legislation to Secure Open Source Software Relies on Transparency Initiative
Success would depend to a significant degree on whether agencies require vendors of information and communications technology to provide a software bill of materials with their products and services.
Cybersecurity
The U.S. is the top target of ransomware attacks, report says
The majority of ransomware attacks worldwide targeted industries that play a "critical role" in domestic and international supply chains, according to new research.
Cybersecurity
Over Half of Operating Systems at VA Medical Center in Texas are Outdated, Watchdog Finds
An audit conducted by the VA’s Office of Inspector General found unaddressed security vulnerabilities and deficient devices at the Harlingen VA Health Care Center.
Cybersecurity